tjh.dev
Linux kernel mirror (for testing)
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel
os
linux
selftests: forwarding: Add a test for VXLAN asymmetric routing
In asymmetric routing the ingress VTEP routes the packet into the
correct VXLAN tunnel, whereas the egress VTEP only bridges the packet to
the correct host. Therefore, packets in different directions use
different VNIs - the target VNI.
The test uses a simple topology with two VTEPs and two VNIs and verifies
that ping passes between hosts (local / remote) in the same VLAN (VNI)
and in different VLANs belonging to the same tenant (VRF).
While the test does not check VM mobility, it does configure an anycast
gateway using a macvlan device on both VTEPs.
Signed-off-by: Ido Schimmel <idosch@mellanox.com>
Reviewed-by: Petr Machata <petrm@mellanox.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
authored by
Ido Schimmel
and committed by
David S. Miller
1538812e
a2ff7e49
+475
+475
tools/testing/selftests/net/forwarding/vxlan_asymmetric.sh
+475
tools/testing/selftests/net/forwarding/vxlan_asymmetric.sh
···
1
+
#!/bin/bash
2
+
# SPDX-License-Identifier: GPL-2.0
3
+
4
+
# +---------------------------+ +------------------------------+
5
+
# | vrf-h1 | | vrf-h2 |
6
+
# | + $h1 | | + $h2 |
7
+
# | | 10.1.1.101/24 | | | 10.1.2.101/24 |
8
+
# | | default via 10.1.1.1 | | | default via 10.1.2.1 |
9
+
# +----|----------------------+ +----|-------------------------+
10
+
# | |
11
+
# +----|--------------------------------------------|-------------------------+
12
+
# | SW | | |
13
+
# | +--|--------------------------------------------|-----------------------+ |
14
+
# | | + $swp1 br1 + $swp2 | |
15
+
# | | vid 10 pvid untagged vid 20 pvid untagged | |
16
+
# | | | |
17
+
# | | + vx10 + vx20 | |
18
+
# | | local 10.0.0.1 local 10.0.0.1 | |
19
+
# | | remote 10.0.0.2 remote 10.0.0.2 | |
20
+
# | | id 1000 id 2000 | |
21
+
# | | dstport 4789 dstport 4789 | |
22
+
# | | vid 10 pvid untagged vid 20 pvid untagged | |
23
+
# | | | |
24
+
# | +-----------------------------------+-----------------------------------+ |
25
+
# | | |
26
+
# | +-----------------------------------|-----------------------------------+ |
27
+
# | | | | |
28
+
# | | +--------------------------------+--------------------------------+ | |
29
+
# | | | | | |
30
+
# | | + vlan10 vlan20 + | |
31
+
# | | | 10.1.1.11/24 10.1.2.11/24 | | |
32
+
# | | | | | |
33
+
# | | + vlan10-v (macvlan) vlan20-v (macvlan) + | |
34
+
# | | 10.1.1.1/24 10.1.2.1/24 | |
35
+
# | | 00:00:5e:00:01:01 00:00:5e:00:01:01 | |
36
+
# | | vrf-green | |
37
+
# | +-----------------------------------------------------------------------+ |
38
+
# | |
39
+
# | + $rp1 +lo |
40
+
# | | 192.0.2.1/24 10.0.0.1/32 |
41
+
# +----|----------------------------------------------------------------------+
42
+
# |
43
+
# +----|--------------------------------------------------------+
44
+
# | | vrf-spine |
45
+
# | + $rp2 |
46
+
# | 192.0.2.2/24 |
47
+
# | | (maybe) HW
48
+
# =============================================================================
49
+
# | | (likely) SW
50
+
# | |
51
+
# | + v1 (veth) |
52
+
# | | 192.0.3.2/24 |
53
+
# +----|--------------------------------------------------------+
54
+
# |
55
+
# +----|----------------------------------------------------------------------+
56
+
# | + v2 (veth) +lo NS1 (netns) |
57
+
# | 192.0.3.1/24 10.0.0.2/32 |
58
+
# | |
59
+
# | +-----------------------------------------------------------------------+ |
60
+
# | | vrf-green | |
61
+
# | | + vlan10-v (macvlan) vlan20-v (macvlan) + | |
62
+
# | | | 10.1.1.1/24 10.1.2.1/24 | | |
63
+
# | | | 00:00:5e:00:01:01 00:00:5e:00:01:01 | | |
64
+
# | | | | | |
65
+
# | | + vlan10 vlan20 + | |
66
+
# | | | 10.1.1.12/24 10.1.2.12/24 | | |
67
+
# | | | | | |
68
+
# | | +--------------------------------+--------------------------------+ | |
69
+
# | | | | |
70
+
# | +-----------------------------------|-----------------------------------+ |
71
+
# | | |
72
+
# | +-----------------------------------+-----------------------------------+ |
73
+
# | | | |
74
+
# | | + vx10 + vx20 | |
75
+
# | | local 10.0.0.2 local 10.0.0.2 | |
76
+
# | | remote 10.0.0.1 remote 10.0.0.1 | |
77
+
# | | id 1000 id 2000 | |
78
+
# | | dstport 4789 dstport 4789 | |
79
+
# | | vid 10 pvid untagged vid 20 pvid untagged | |
80
+
# | | | |
81
+
# | | + w1 (veth) + w3 (veth) | |
82
+
# | | | vid 10 pvid untagged br1 | vid 20 pvid untagged | |
83
+
# | +--|------------------------------------------|-------------------------+ |
84
+
# | | | |
85
+
# | | | |
86
+
# | +--|----------------------+ +--|-------------------------+ |
87
+
# | | | vrf-h1 | | | vrf-h2 | |
88
+
# | | + w2 (veth) | | + w4 (veth) | |
89
+
# | | 10.1.1.102/24 | | 10.1.2.102/24 | |
90
+
# | | default via 10.1.1.1 | | default via 10.1.2.1 | |
91
+
# | +-------------------------+ +----------------------------+ |
92
+
# +---------------------------------------------------------------------------+
93
+
94
+
ALL_TESTS="
95
+
ping_ipv4
96
+
"
97
+
NUM_NETIFS=6
98
+
source lib.sh
99
+
100
+
hx_create()
101
+
{
102
+
local vrf_name=$1; shift
103
+
local if_name=$1; shift
104
+
local ip_addr=$1; shift
105
+
local gw_ip=$1; shift
106
+
107
+
vrf_create $vrf_name
108
+
ip link set dev $if_name master $vrf_name
109
+
ip link set dev $vrf_name up
110
+
ip link set dev $if_name up
111
+
112
+
ip address add $ip_addr/24 dev $if_name
113
+
ip neigh replace $gw_ip lladdr 00:00:5e:00:01:01 nud permanent \
114
+
dev $if_name
115
+
ip route add default vrf $vrf_name nexthop via $gw_ip
116
+
}
117
+
export -f hx_create
118
+
119
+
hx_destroy()
120
+
{
121
+
local vrf_name=$1; shift
122
+
local if_name=$1; shift
123
+
local ip_addr=$1; shift
124
+
local gw_ip=$1; shift
125
+
126
+
ip route del default vrf $vrf_name nexthop via $gw_ip
127
+
ip neigh del $gw_ip dev $if_name
128
+
ip address del $ip_addr/24 dev $if_name
129
+
130
+
ip link set dev $if_name down
131
+
vrf_destroy $vrf_name
132
+
}
133
+
134
+
h1_create()
135
+
{
136
+
hx_create "vrf-h1" $h1 10.1.1.101 10.1.1.1
137
+
}
138
+
139
+
h1_destroy()
140
+
{
141
+
hx_destroy "vrf-h1" $h1 10.1.1.101 10.1.1.1
142
+
}
143
+
144
+
h2_create()
145
+
{
146
+
hx_create "vrf-h2" $h2 10.1.2.101 10.1.2.1
147
+
}
148
+
149
+
h2_destroy()
150
+
{
151
+
hx_destroy "vrf-h2" $h2 10.1.2.101 10.1.2.1
152
+
}
153
+
154
+
switch_create()
155
+
{
156
+
ip link add name br1 type bridge vlan_filtering 1 vlan_default_pvid 0 \
157
+
mcast_snooping 0
158
+
# Make sure the bridge uses the MAC address of the local port and not
159
+
# that of the VxLAN's device.
160
+
ip link set dev br1 address $(mac_get $swp1)
161
+
ip link set dev br1 up
162
+
163
+
ip link set dev $rp1 up
164
+
ip address add dev $rp1 192.0.2.1/24
165
+
ip route add 10.0.0.2/32 nexthop via 192.0.2.2
166
+
167
+
ip link add name vx10 type vxlan id 1000 \
168
+
local 10.0.0.1 remote 10.0.0.2 dstport 4789 \
169
+
nolearning noudpcsum tos inherit ttl 100
170
+
ip link set dev vx10 up
171
+
172
+
ip link set dev vx10 master br1
173
+
bridge vlan add vid 10 dev vx10 pvid untagged
174
+
175
+
ip link add name vx20 type vxlan id 2000 \
176
+
local 10.0.0.1 remote 10.0.0.2 dstport 4789 \
177
+
nolearning noudpcsum tos inherit ttl 100
178
+
ip link set dev vx20 up
179
+
180
+
ip link set dev vx20 master br1
181
+
bridge vlan add vid 20 dev vx20 pvid untagged
182
+
183
+
ip link set dev $swp1 master br1
184
+
ip link set dev $swp1 up
185
+
bridge vlan add vid 10 dev $swp1 pvid untagged
186
+
187
+
ip link set dev $swp2 master br1
188
+
ip link set dev $swp2 up
189
+
bridge vlan add vid 20 dev $swp2 pvid untagged
190
+
191
+
ip address add 10.0.0.1/32 dev lo
192
+
193
+
# Create SVIs
194
+
vrf_create "vrf-green"
195
+
ip link set dev vrf-green up
196
+
197
+
ip link add link br1 name vlan10 up master vrf-green type vlan id 10
198
+
ip address add 10.1.1.11/24 dev vlan10
199
+
ip link add link vlan10 name vlan10-v up master vrf-green \
200
+
address 00:00:5e:00:01:01 type macvlan mode private
201
+
ip address add 10.1.1.1/24 dev vlan10-v
202
+
203
+
ip link add link br1 name vlan20 up master vrf-green type vlan id 20
204
+
ip address add 10.1.2.11/24 dev vlan20
205
+
ip link add link vlan20 name vlan20-v up master vrf-green \
206
+
address 00:00:5e:00:01:01 type macvlan mode private
207
+
ip address add 10.1.2.1/24 dev vlan20-v
208
+
209
+
bridge vlan add vid 10 dev br1 self
210
+
bridge vlan add vid 20 dev br1 self
211
+
212
+
bridge fdb add 00:00:5e:00:01:01 dev br1 self local vlan 10
213
+
bridge fdb add 00:00:5e:00:01:01 dev br1 self local vlan 20
214
+
}
215
+
216
+
switch_destroy()
217
+
{
218
+
bridge fdb del 00:00:5e:00:01:01 dev br1 self local vlan 20
219
+
bridge fdb del 00:00:5e:00:01:01 dev br1 self local vlan 10
220
+
221
+
bridge vlan del vid 20 dev br1 self
222
+
bridge vlan del vid 10 dev br1 self
223
+
224
+
ip link del dev vlan20
225
+
226
+
ip link del dev vlan10
227
+
228
+
vrf_destroy "vrf-green"
229
+
230
+
ip address del 10.0.0.1/32 dev lo
231
+
232
+
bridge vlan del vid 20 dev $swp2
233
+
ip link set dev $swp2 down
234
+
ip link set dev $swp2 nomaster
235
+
236
+
bridge vlan del vid 10 dev $swp1
237
+
ip link set dev $swp1 down
238
+
ip link set dev $swp1 nomaster
239
+
240
+
bridge vlan del vid 20 dev vx20
241
+
ip link set dev vx20 nomaster
242
+
243
+
ip link set dev vx20 down
244
+
ip link del dev vx20
245
+
246
+
bridge vlan del vid 10 dev vx10
247
+
ip link set dev vx10 nomaster
248
+
249
+
ip link set dev vx10 down
250
+
ip link del dev vx10
251
+
252
+
ip route del 10.0.0.2/32 nexthop via 192.0.2.2
253
+
ip address del dev $rp1 192.0.2.1/24
254
+
ip link set dev $rp1 down
255
+
256
+
ip link set dev br1 down
257
+
ip link del dev br1
258
+
}
259
+
260
+
spine_create()
261
+
{
262
+
vrf_create "vrf-spine"
263
+
ip link set dev $rp2 master vrf-spine
264
+
ip link set dev v1 master vrf-spine
265
+
ip link set dev vrf-spine up
266
+
ip link set dev $rp2 up
267
+
ip link set dev v1 up
268
+
269
+
ip address add 192.0.2.2/24 dev $rp2
270
+
ip address add 192.0.3.2/24 dev v1
271
+
272
+
ip route add 10.0.0.1/32 vrf vrf-spine nexthop via 192.0.2.1
273
+
ip route add 10.0.0.2/32 vrf vrf-spine nexthop via 192.0.3.1
274
+
}
275
+
276
+
spine_destroy()
277
+
{
278
+
ip route del 10.0.0.2/32 vrf vrf-spine nexthop via 192.0.3.1
279
+
ip route del 10.0.0.1/32 vrf vrf-spine nexthop via 192.0.2.1
280
+
281
+
ip address del 192.0.3.2/24 dev v1
282
+
ip address del 192.0.2.2/24 dev $rp2
283
+
284
+
ip link set dev v1 down
285
+
ip link set dev $rp2 down
286
+
vrf_destroy "vrf-spine"
287
+
}
288
+
289
+
ns_h1_create()
290
+
{
291
+
hx_create "vrf-h1" w2 10.1.1.102 10.1.1.1
292
+
}
293
+
export -f ns_h1_create
294
+
295
+
ns_h2_create()
296
+
{
297
+
hx_create "vrf-h2" w4 10.1.2.102 10.1.2.1
298
+
}
299
+
export -f ns_h2_create
300
+
301
+
ns_switch_create()
302
+
{
303
+
ip link add name br1 type bridge vlan_filtering 1 vlan_default_pvid 0 \
304
+
mcast_snooping 0
305
+
ip link set dev br1 up
306
+
307
+
ip link set dev v2 up
308
+
ip address add dev v2 192.0.3.1/24
309
+
ip route add 10.0.0.1/32 nexthop via 192.0.3.2
310
+
311
+
ip link add name vx10 type vxlan id 1000 \
312
+
local 10.0.0.2 remote 10.0.0.1 dstport 4789 \
313
+
nolearning noudpcsum tos inherit ttl 100
314
+
ip link set dev vx10 up
315
+
316
+
ip link set dev vx10 master br1
317
+
bridge vlan add vid 10 dev vx10 pvid untagged
318
+
319
+
ip link add name vx20 type vxlan id 2000 \
320
+
local 10.0.0.2 remote 10.0.0.1 dstport 4789 \
321
+
nolearning noudpcsum tos inherit ttl 100
322
+
ip link set dev vx20 up
323
+
324
+
ip link set dev vx20 master br1
325
+
bridge vlan add vid 20 dev vx20 pvid untagged
326
+
327
+
ip link set dev w1 master br1
328
+
ip link set dev w1 up
329
+
bridge vlan add vid 10 dev w1 pvid untagged
330
+
331
+
ip link set dev w3 master br1
332
+
ip link set dev w3 up
333
+
bridge vlan add vid 20 dev w3 pvid untagged
334
+
335
+
ip address add 10.0.0.2/32 dev lo
336
+
337
+
# Create SVIs
338
+
vrf_create "vrf-green"
339
+
ip link set dev vrf-green up
340
+
341
+
ip link add link br1 name vlan10 up master vrf-green type vlan id 10
342
+
ip address add 10.1.1.12/24 dev vlan10
343
+
ip link add link vlan10 name vlan10-v up master vrf-green \
344
+
address 00:00:5e:00:01:01 type macvlan mode private
345
+
ip address add 10.1.1.1/24 dev vlan10-v
346
+
347
+
ip link add link br1 name vlan20 up master vrf-green type vlan id 20
348
+
ip address add 10.1.2.12/24 dev vlan20
349
+
ip link add link vlan20 name vlan20-v up master vrf-green \
350
+
address 00:00:5e:00:01:01 type macvlan mode private
351
+
ip address add 10.1.2.1/24 dev vlan20-v
352
+
353
+
bridge vlan add vid 10 dev br1 self
354
+
bridge vlan add vid 20 dev br1 self
355
+
356
+
bridge fdb add 00:00:5e:00:01:01 dev br1 self local vlan 10
357
+
bridge fdb add 00:00:5e:00:01:01 dev br1 self local vlan 20
358
+
}
359
+
export -f ns_switch_create
360
+
361
+
ns_init()
362
+
{
363
+
ip link add name w1 type veth peer name w2
364
+
ip link add name w3 type veth peer name w4
365
+
366
+
ip link set dev lo up
367
+
368
+
ns_h1_create
369
+
ns_h2_create
370
+
ns_switch_create
371
+
}
372
+
export -f ns_init
373
+
374
+
ns1_create()
375
+
{
376
+
ip netns add ns1
377
+
ip link set dev v2 netns ns1
378
+
in_ns ns1 ns_init
379
+
}
380
+
381
+
ns1_destroy()
382
+
{
383
+
ip netns exec ns1 ip link set dev v2 netns 1
384
+
ip netns del ns1
385
+
}
386
+
387
+
macs_populate()
388
+
{
389
+
local mac1=$1; shift
390
+
local mac2=$1; shift
391
+
local ip1=$1; shift
392
+
local ip2=$1; shift
393
+
local dst=$1; shift
394
+
395
+
bridge fdb add $mac1 dev vx10 self master extern_learn static \
396
+
dst $dst vlan 10
397
+
bridge fdb add $mac2 dev vx20 self master extern_learn static \
398
+
dst $dst vlan 20
399
+
400
+
ip neigh add $ip1 lladdr $mac1 nud noarp dev vlan10 \
401
+
extern_learn
402
+
ip neigh add $ip2 lladdr $mac2 nud noarp dev vlan20 \
403
+
extern_learn
404
+
}
405
+
export -f macs_populate
406
+
407
+
macs_initialize()
408
+
{
409
+
local h1_ns_mac=$(in_ns ns1 mac_get w2)
410
+
local h2_ns_mac=$(in_ns ns1 mac_get w4)
411
+
local h1_mac=$(mac_get $h1)
412
+
local h2_mac=$(mac_get $h2)
413
+
414
+
macs_populate $h1_ns_mac $h2_ns_mac 10.1.1.102 10.1.2.102 10.0.0.2
415
+
in_ns ns1 macs_populate $h1_mac $h2_mac 10.1.1.101 10.1.2.101 10.0.0.1
416
+
}
417
+
418
+
setup_prepare()
419
+
{
420
+
h1=${NETIFS[p1]}
421
+
swp1=${NETIFS[p2]}
422
+
423
+
swp2=${NETIFS[p3]}
424
+
h2=${NETIFS[p4]}
425
+
426
+
rp1=${NETIFS[p5]}
427
+
rp2=${NETIFS[p6]}
428
+
429
+
vrf_prepare
430
+
forwarding_enable
431
+
432
+
h1_create
433
+
h2_create
434
+
switch_create
435
+
436
+
ip link add name v1 type veth peer name v2
437
+
spine_create
438
+
ns1_create
439
+
440
+
macs_initialize
441
+
}
442
+
443
+
cleanup()
444
+
{
445
+
pre_cleanup
446
+
447
+
ns1_destroy
448
+
spine_destroy
449
+
ip link del dev v1
450
+
451
+
switch_destroy
452
+
h2_destroy
453
+
h1_destroy
454
+
455
+
forwarding_restore
456
+
vrf_cleanup
457
+
}
458
+
459
+
ping_ipv4()
460
+
{
461
+
ping_test $h1 10.1.2.101 ": local->local vid 10->vid 20"
462
+
ping_test $h1 10.1.1.102 ": local->remote vid 10->vid 10"
463
+
ping_test $h2 10.1.2.102 ": local->remote vid 20->vid 20"
464
+
ping_test $h1 10.1.2.102 ": local->remote vid 10->vid 20"
465
+
ping_test $h2 10.1.1.102 ": local->remote vid 20->vid 10"
466
+
}
467
+
468
+
trap cleanup EXIT
469
+
470
+
setup_prepare
471
+
setup_wait
472
+
473
+
tests_run
474
+
475
+
exit $EXIT_STATUS