Skip to content

Commit

Permalink
ovn: do not send direct traffic between lports to conntrack (#3131)
Browse files Browse the repository at this point in the history
  • Loading branch information
zhangzujian committed Aug 14, 2023
1 parent e5c62d9 commit f225c66
Show file tree
Hide file tree
Showing 4 changed files with 2 additions and 38 deletions.
4 changes: 2 additions & 2 deletions dist/images/Dockerfile.base
Original file line number Diff line number Diff line change
Expand Up @@ -29,8 +29,8 @@ RUN cd /usr/src/ && \

RUN cd /usr/src/ && git clone -b branch-22.12 --depth=1 https://github.com/ovn-org/ovn.git && \
cd ovn && \
# do not send traffic that not designate to svc to conntrack
curl -s https://github.com/kubeovn/ovn/commit/961e67eff786fe219c98054a7af5409cc0fb52cc.patch | git apply && \
# do not send direct traffic between lports to conntrack
curl -s https://github.com/kubeovn/ovn/commit/4124fb623183541b80a577846ce145c7faf8eb5d.patch | git apply && \
# change hash type from dp_hash to hash with field src_ip
curl -s https://github.com/kubeovn/ovn/commit/daa09e380eec61620d4ee317e3265c44366d1147.patch | git apply && \
# set ether dst addr for dnat on logical switch
Expand Down
28 changes: 0 additions & 28 deletions mocks/pkg/ovs/interface.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

7 changes: 0 additions & 7 deletions pkg/controller/init.go
Original file line number Diff line number Diff line change
Expand Up @@ -32,13 +32,6 @@ func (c *Controller) InitOVN() error {
klog.Errorf("init load balancer failed: %v", err)
return err
}
v4Svc, _ := util.SplitStringIP(c.config.ServiceClusterIPRange)
if v4Svc != "" {
if err := c.ovnClient.SetLBCIDR(v4Svc); err != nil {
klog.Errorf("init load balancer svc cidr failed: %v", err)
return err
}
}
}

if err := c.initDefaultVlan(); err != nil {
Expand Down
1 change: 0 additions & 1 deletion pkg/ovs/interface.go
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,6 @@ type NBGlobal interface {
SetAzName(azName string) error
SetUseCtInvMatch() error
SetICAutoRoute(enable bool, blackList []string) error
SetLBCIDR(serviceCIDR string) error
SetLsDnatModDlDst(enabled bool) error
GetNbGlobal() (*ovnnb.NBGlobal, error)
}
Expand Down

0 comments on commit f225c66

Please sign in to comment.