@@ -897,6 +897,25 @@ output;
<code>to-lport</code> ACLs.
</p>
+ <p>
+ In addition, the following flows are added.
+ </p>
+ <ul>
+ <li>
+ A priority 34000 logical flow is added for each logical port which
+ has DHCPv4 options defined to allow the DHCPv4 reply packet and which has
+ DHCPv6 options defined to allow the DHCPv6 reply packet from the
+ <code>Ingress Table 13: DHCP responses</code>.
+ </li>
+
+ <li>
+ A priority 34000 logical flow is added for each logical switch datapath
+ configured with DNS records with the match <code>udp.dst = 53</code>
+ to allow the DNS reply packet from the
+ <code>Ingress Table 15:DNS responses</code>.
+ </li>
+ </ul>
+
<h3>Egress Table 5: <code>to-lport</code> QoS marking</h3>
<p>
@@ -918,25 +937,6 @@ output;
there are no rules added for load balancing new connections.
</p>
- <p>
- Also the following flows are added.
- </p>
- <ul>
- <li>
- A priority 34000 logical flow is added for each logical port which
- has DHCPv4 options defined to allow the DHCPv4 reply packet and which has
- DHCPv6 options defined to allow the DHCPv6 reply packet from the
- <code>Ingress Table 13: DHCP responses</code>.
- </li>
-
- <li>
- A priority 34000 logical flow is added for each logical switch datapath
- configured with DNS records with the match <code>udp.dst = 53</code>
- to allow the DNS reply packet from the
- <code>Ingress Table 15:DNS responses</code>.
- </li>
- </ul>
-
<h3>Egress Table 8: Egress Port Security - IP</h3>
<p>
The priority 34000 DHCP and DNS flows are added to the S_SWITCH_OUT_ACL table and not S_SWITCH_OUT_STATEFUL table. CC: Numan Siddique <nusiddiq@redhat.com> Signed-off-by: Gurucharan Shetty <guru@ovn.org> --- ovn/northd/ovn-northd.8.xml | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-)