fix : packet drops by compute nodes by rewriting the whole chain rule to accept all traffic

parent 2f12c00f
......@@ -96,19 +96,14 @@ def computeOFlowInstall(dic, start_response):
LOG.info("Reconfiguring iptables for ids vm traffic")
iptable_flush = "sudo iptables -F %s" % VMCHAININPUT
LOG.info("%s", iptable_flush)
ovscmdlist.append(iptable_flush)
iptable_allowall= "sudo iptables -A %s -p all -j RETURN" % VMCHAININPUT
LOG.info("%s", iptable_allowall)
ovscmdlist.append(iptable_allowall)
#rearrange iptable chain in cmd
iptable_del_fallback = "sudo iptables -D %s -p all -j %s" % (VMCHAININPUT, VMINPUTCHAINFALLBACK)
LOG.info("%s", iptable_del_fallback)
ovscmdlist.append(iptable_del_fallback)
iptable_add_fallback = "sudo iptables -A %s -p all -j %s" % (VMCHAININPUT, VMINPUTCHAINFALLBACK)
LOG.info("%s", iptable_add_fallback)
ovscmdlist.append(iptable_add_fallback)
else:
computetunflow = 'sudo ovs-ofctl del-flows br-tun tun_id=%d' \
% (int(tunid))
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment