Changes between Version 28 and Version 29 of HowTo/ConfigureOVSStaticRouteMirroringNoController
- Timestamp:
- 07/11/17 13:10:42 (7 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
HowTo/ConfigureOVSStaticRouteMirroringNoController
v28 v29 1 1 [[PageOutline]] 2 2 3 = How to set up static flows in OVS =3 = 1 How to set up static flows in OVS = 4 4 5 5 This page demonstrates how to set up static IP traffic flows between two hosts connected to an OVS switch without running a separate !OpenFlow controller and by using custom !OpenFlow table rules. … … 18 18 First we will establish rules for allowing IP traffic to flow between host1 and host2. Later in the howto we will discuss how to setup the OVS switch to allow for host3 to observe the traffic between host1 and host2 using !OpenFlow table rules. An alternative method using the Mirror feature of the OVS switch is also presented if only mirroring is required. These setups maybe be used for network monitoring. 19 19 20 == Setting up the static IP traffic ==21 === Configure OVS Switch === #configureovs20 == 1.1 Setting up the static IP traffic == 21 === 1.1.1 Configure OVS Switch === #configureovs 22 22 23 23 i. Login to the OVS host … … 37 37 38 38 39 === Testing the connectivity between host1, host2 and host3 ===39 === 1.1.2 Testing the connectivity between host1, host2 and host3 === 40 40 41 41 Initially the OVS switch is setup to act like an L2 learning switch. We want to disable this behavior except for specific IP addresses. … … 62 62 Each of these should be unreachable. 63 63 64 === Setting up the static IP flows ===64 === 1.1.3 Setting up the static IP flows === 65 65 66 66 We can now setup routing between host1 and host2 on the OVS switch. First we will add rules to allow the OVS switch to behave like a normal switch for IP traffic between the two hosts. … … 97 97 98 98 99 = Setting up mirroring behavior =99 = 2 Setting up mirroring behavior = 100 100 101 101 There are two possible ways in which port mirroring can be setup using an OVS switch. The first method presented uses !OpenFlow table rules. An alternative method is presented that does not use !OpenFlow at all. 102 102 103 === Setting up mirroring of traffic from host1 and host2 to host3 (using ovs-ofctl) ===103 === 2.1 Setting up mirroring of traffic from host1 and host2 to host3 (using ovs-ofctl) === 104 104 105 105 Mirroring can be setup by adding flows to the !OpenFlow table that take for {{{in_port}}} the port we want monitored, and by specifying the output port in which we want the monitoring traffic to be sent to. This is done using {{{actions=output:#.}}} … … 115 115 Port numbers are assigned based on the order that the ports were added to the bridge as presented in [#configureovs Configure OVS Switch] 116 116 117 == Setting up mirroring of traffic from host1 and host2 to host3 (using ovs-vctl)==117 === 2.2 Setting up mirroring of traffic from host1 and host2 to host3 (using ovs-vctl) === 118 118 119 119 It is possible to setup mirroring without ever adding any flows to the !OpenFlow table. This is done with a single command to ovs-vsctl. … … 130 130 ethZ is the interface on the OVS switch that connects to host3. 131 131 132 === Verifying mirroring behavior ===132 === 2.3 Verifying mirroring behavior === 133 133 134 134 Using the three hosts (host1, host2, and host3) SSH connections, we will use netcat to pass along messages and observe the mirroring behavior.
