Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Stateful NFV Packet Filtering #403

Merged
merged 6 commits into from
Mar 20, 2015
Merged

Stateful NFV Packet Filtering #403

merged 6 commits into from
Mar 20, 2015

Conversation

eugeneia
Copy link
Member

Implement NFV packet filtering as described in Neutron API Extensions/Stateless Packet Filtering.

E.g. if vif_details contains packetfilter="stateless" do stateless packet filtering. Otherwise do standard Neutron packet filtering.

lukego
lukego reviewed Mar 17, 2015
View reviewed changes
src/program/snabbnfv/neutron2snabb/neutron2snabb.lua
@@ -59,8 +59,8 @@ function create_config (input_dir, output_dir, hostname)
{ vlan = vif_details.zone_vlan,
mac_address = port.mac_address,
port_id = port.id,
ingress_filter = filter(port, secbindings, secrules, 'ingress'),
egress_filter = filter(port, secbindings, secrules, 'egress'),
ingress_filter = filter(port, secbindings, secrules, 'ingress', vif_details.packetfilter),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The packetfilter setting should be in profile rather than vif_details.

profile contains configuration supplied by the user and vif_details contains information determined by the OpenStack code. (This is OpenStack Neutron semantics and not some funny invention of mine :-))

@lukego
Copy link
Member

lukego commented Mar 17, 2015

@N-Nikolaev How do these changes look to you?

eugeneia
eugeneia reviewed Mar 17, 2015
View reviewed changes
src/program/snabbnfv/neutron2snabb/neutron2snabb.lua
ingress_filter = filter(port, secbindings, secrules, 'ingress'),
egress_filter = filter(port, secbindings, secrules, 'egress'),
ingress_filter = filter(port, secbindings, secrules, 'ingress', vif_details.packetfilter),
egress_filter = filter(port, secbindings, secrules, 'egress', vif_details.packetfilter),
gbps = vif_details.zone_gbps,
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The packetfilter setting should be in profile rather than vif_details.

@lukego This line looks a bit fishy too now that I think about it. We never use the gbps field in nfvconfig... (and some sort of tx_police_gbps is missing too).

@lukego lukego merged commit b5dc6ab into snabbco:master Mar 20, 2015
lukego added a commit that referenced this pull request Mar 20, 2015
@lukego
Merge PR #403: Stateful NFV Packet Filtering
86c97e0 
Resolved simple conflict in neutron2snabb where lines were modified in
the PR that were adjacent to a removed line on master.

Conflicts:
	src/program/snabbnfv/neutron2snabb/neutron2snabb.lua
@eugeneia eugeneia deleted the stateful-nfv-pf branch May 20, 2015 12:53
mwiget pushed a commit to mwiget/snabb that referenced this pull request Sep 4, 2016
@dpino
Merge pull request snabbco#403 from mwiget/query
9bedbc4 
snabbvmx query to xml
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@eugeneia @lukego