<div dir="ltr">Hi Dmitri,<div><br></div><div>networking drivers are very extensible. I suggest you take a look at this file:</div><div><a href="https://github.com/OpenNebula/one/blob/master/src/vnm_mad/remotes/ovswitch/OpenvSwitch.rb">https://github.com/OpenNebula/one/blob/master/src/vnm_mad/remotes/ovswitch/OpenvSwitch.rb</a><br>
</div><div><br></div><div>If you customize it and spread it to the hosts ( onehost sync ) you will be able to filter for whatever criteria you want. Note that you can access the instance variable @vm, which holds the vm template.</div>
<div><br></div><div>For instance, if you add "DELETE_FLOWS=YES" to the VM template, you will be able to do:</div><div><br></div><div><font face="courier new, monospace">if @vm['TEMPLATE/DELETE_FLOWS'] == "YES"<br>
... # remove/don't create flows...<br>end</font></div><div><font face="courier new, monospace"><br></font></div>cheers,<br>Jaime</div><div class="gmail_extra"><br><br><div class="gmail_quote">On Fri, Aug 30, 2013 at 9:43 PM, Dmitri Chebotarov <span dir="ltr"><<a href="mailto:dchebota@gmu.edu" target="_blank">dchebota@gmu.edu</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div style="font-size:14px;font-family:Calibri,sans-serif;word-wrap:break-word">
<div>
<div>Hi</div>
<div><br>
</div>
<div>I traced it back to MAC-spoofing rule (not promisc mode).</div>
<div>By default the rule applies to all VM, I.e. :</div>
<div><br>
</div>
<div>
<pre style="padding:0.5em;border:1px dashed rgb(85,85,85);color:rgb(85,85,85);background-color:rgb(245,245,245);overflow:auto!important;line-height:18px;margin:10px;font-size:13px;text-align:left">in_port=<PORT>,dl_src=<MAC>,priority=40000,actions=normal
in_port=<PORT>,priority=39000,actions=normal</pre>
</div>
<div>This prevented bridging to work properly inside a VM. </div>
<div>It worked OK once I deleted flows, I.e.:</div>
<div><br>
</div>
<div>
<div>/usr/bin/ovs-ofctl del-flows --strict br0 in_port=128,dl_src=02:00:c0:a8:0d:01,priority=40000</div>
<div>/usr/bin/ovs-ofctl del-flows --strict br0 in_port=128,priority=39000</div>
</div>
<div><br>
</div>
<div>Now I'll be looking for a way to delete flows for certain VM based on some attributes in template or image, perhaps Hooks?</div>
<div><span style="font-family:Helvetica;font-size:medium">--</span><br style="font-family:Helvetica;font-size:medium">
<span style="font-family:Helvetica;font-size:medium">Thank you,</span><br style="font-family:Helvetica;font-size:medium">
<br style="font-family:Helvetica;font-size:medium">
<span style="font-family:Helvetica;font-size:medium">Dmitri Chebotarov</span><br style="font-family:Helvetica;font-size:medium">
<span style="font-family:Helvetica;font-size:medium">VCL Sys Eng, Engineering & Architectural Support, TSD - Ent Servers & Messaging</span><br style="font-family:Helvetica;font-size:medium">
<span style="font-family:Helvetica;font-size:medium">223 Aquia Building, Ffx, MSN: 1B5</span><br style="font-family:Helvetica;font-size:medium">
<span style="font-family:Helvetica;font-size:medium">Phone: <a href="tel:%28703%29%20993-6175" value="+17039936175" target="_blank">(703) 993-6175</a> | Fax: <a href="tel:%28703%29%20993-3404" value="+17039933404" target="_blank">(703) 993-3404</a></span><br style="font-family:Helvetica;font-size:medium">
<br style="font-family:Helvetica;font-size:medium">
</div>
</div>
<div><br>
</div>
<span>
<div style="border-right:medium none;padding-right:0in;padding-left:0in;padding-top:3pt;text-align:left;font-size:11pt;border-bottom:medium none;font-family:Calibri;border-top:#b5c4df 1pt solid;padding-bottom:0in;border-left:medium none">
<span style="font-weight:bold">From: </span>Dimach Chebotarov <<a href="mailto:dchebota@gmu.edu" target="_blank">dchebota@gmu.edu</a>><br>
<span style="font-weight:bold">Date: </span>Thursday, August 29, 2013 21:04 <br>
<span style="font-weight:bold">To: </span>"<a href="mailto:users@lists.opennebula.org" target="_blank">users@lists.opennebula.org</a>" <<a href="mailto:users@lists.opennebula.org" target="_blank">users@lists.opennebula.org</a>><div class="im">
<br>
<span style="font-weight:bold">Subject: </span>[one-users] Host's openvswitch promiscuous mode for VMs<br>
</div></div><div><div class="h5">
<div><br>
</div>
<div dir="ltr">
<div>
<div style="direction:ltr;font-size:10pt;font-family:Tahoma">
<p>Hi</p>
<p> </p>
<p>I'm not sure if this applies to opennebula, or should I direct it to an OVS forum/group:</p>
<p> </p>
<p>I'm trying to build a Linux bridge to extend my network into another cloud. The bridge is running inside Linux VM, which is hosted on opennebula host /w openvswitch. The bridge configuration requires interface to be in promiscuous mode (inside VM) to work
properly, but I cannot find a way to permit promiscuous mode for the VM's interface (vnetX) on the host. This is similar to what VMware vSwtich has to permit promiscuous mode inside VM.
</p>
<p> </p>
<p>I've duplicated the same configuration on my local WKS using VirtualBox and it works OK as soon as permit promiscuous mode for network interface.
</p>
<p> </p>
<p>I apologize for spam if it doesn't apply to this group...</p>
<p> </p>
<p>Thanks.</p>
</div>
</div>
</div>
</div></div></span>
</div>
<br>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opennebula.org">Users@lists.opennebula.org</a><br>
<a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>
<br></blockquote></div><br><br clear="all"><div><br></div>-- <br><div dir="ltr">Join us at <a href="http://opennebulaconf.com/" style="color:rgb(17,85,204)" target="_blank">OpenNebulaConf2013</a> in Berlin, <span><span>24-26 September, 2013</span></span><br>
--<div>Jaime Melis<br>Project Engineer<br>OpenNebula - The Open Source Toolkit for Cloud Computing<br><a href="http://www.OpenNebula.org" target="_blank">www.OpenNebula.org</a> | <a href="mailto:jmelis@opennebula.org" target="_blank">jmelis@opennebula.org</a></div>
</div>
</div>