[IPv6] Support flow exporter #1541
Conversation
|
Thanks for your PR. The following commands are available:
|
lzhecheng
force-pushed
the
ipv6-fx
branch
2 times, most recently
from
019d81a
to
d14e98a
Compare
Codecov Report
@@ Coverage Diff @@
## master #1541 +/- ##
==========================================
+ Coverage 63.31% 64.30% +0.99%
==========================================
Files 170 181 +11
Lines 14250 15427 +1177
==========================================
+ Hits 9023 9921 +898
- Misses 4292 4472 +180
- Partials 935 1034 +99
Flags with carried forward coverage won't be shown. Click here to find out more.
|
|
/test-e2e /test-conformance /test-networkpolicy |
lzhecheng
force-pushed
the
ipv6-fx
branch
2 times, most recently
from
ebc6fbf
to
6ed7a7c
Compare
There was a problem hiding this comment.
@lzhecheng Currently we consider only the connections in Antrea connection zone of conntrack table and ignore connections in the default zone.
There is a separate connection zone for IPv6. Don't we need to consider that connection zone if the stack is IPv6? Wondering if the flow exporter e2e test is passing with IPv6 stack or not.
I think I have it? |
lzhecheng
force-pushed
the
ipv6-fx
branch
4 times, most recently
from
6580cfa
to
1e173eb
Compare
|
/test-windows-conformance |
|
/test-ipv6-all |
|
/test-e2e |
|
/test-ipv6-e2e |
lzhecheng
force-pushed
the
ipv6-fx
branch
2 times, most recently
from
09d082e
to
6a50de8
Compare
|
/test-e2e |
|
/test-all |
|
/test-conformance |
|
|
||
| return sentBytes, nil | ||
| } | ||
|
|
||
| func (exp *flowExporter) sendDataSet(dataSet ipfix.IPFIXSet, record flowexporter.FlowRecord, templateID uint16) error { | ||
| func (exp *flowExporter) sendDataSet(dataSet ipfix.IPFIXSet, record flowexporter.FlowRecord, templateID uint16, isIPv6 bool) error { |
There was a problem hiding this comment.
Do we need the args templateID and isIPv6? I thinkrecord flowexporter.FlowRecord and exp *flowExporter should have these already.
| @@ -195,9 +227,15 @@ func (exp *flowExporter) sendFlowRecords() error { | |||
| return nil | |||
| } | |||
|
|
|||
| func (exp *flowExporter) sendTemplateSet(templateSet ipfix.IPFIXSet, templateID uint16) (int, error) { | |||
| func (exp *flowExporter) sendTemplateSet(templateSet ipfix.IPFIXSet, templateID uint16, isIPv6 bool) (int, error) { | |||
There was a problem hiding this comment.
templateID is not needed as we assign the templateID to exp *flowExporter in L179 and L189 and can use that inside the function based on isIPv6. Is my understanding correct?
There was a problem hiding this comment.
You are right. Updated.
| ie.Value = record.Conn.TupleOrig.DestinationAddress | ||
| } else { | ||
| // Same as destinationClusterIPv4. | ||
| ie.Value = net.IP{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0} |
There was a problem hiding this comment.
nit: simplified version net.IP.Parse("::0")
There was a problem hiding this comment.
It seems "::" works as well. Updated.
pkg/agent/flowexporter/types.go
Outdated
| @@ -70,4 +70,6 @@ type FlowRecord struct { | |||
| PrevBytes uint64 | |||
| PrevReversePackets uint64 | |||
| PrevReverseBytes uint64 | |||
| V4Enabled bool | |||
There was a problem hiding this comment.
Just need one field isIPv6 as one flow record corresponds to either v4 or v6.
| @@ -35,9 +35,32 @@ func NewFlowRecords(connStore *connections.ConnectionStore) *FlowRecords { | |||
| } | |||
|
|
|||
| // BuildFlowRecords builds the flow record map from connection map in connection store | |||
| func (fr *FlowRecords) BuildFlowRecords() error { | |||
| func (fr *FlowRecords) BuildFlowRecords(v4Enabled bool, v6Enabled bool) error { | |||
There was a problem hiding this comment.
We do not need the args. From IP in key, we can say if it is v4 or v6.
lzhecheng
force-pushed
the
ipv6-fx
branch
3 times, most recently
from
d4de2f4
to
a579a20
Compare
|
/test-e2e |
|
/test-all |
| fr.recordsMap[key] = record | ||
| return nil | ||
| } | ||
|
|
||
| // fr.addOrUpdateFlowRecord method does not return any error, hence no error handling required. |
There was a problem hiding this comment.
We could change the comment that still says the method name of flow record rather than function name.
There was a problem hiding this comment.
Indeed. fr.addOrUpdateFlowRecord -> addOrUpdateFlowRecord
|
/test-all |
|
/test-conformance |
|
/test-e2e |
|
/test-ipv6-only-conformance |
1 similar comment
|
/test-ipv6-only-conformance |
| // Poll calls into conntrackDumper interface to dump conntrack flows. In a dual-stack setup, there will be two connsLens | ||
| // get returned. |
There was a problem hiding this comment.
suggestion: Poll calls into conntrackDumper interface to dump conntrack flows. It returns the number of connections for each address family, as a slice. In dual-stack clusters, the slice will contain 2 values (number of IPv4 connections first, then number of IPv6 connections).
| IANAReverseInfoElements = []string{ | ||
| "reversePacketTotalCount", | ||
| "reverseOctetTotalCount", | ||
| "reversePacketDeltaCount", | ||
| "reverseOctetDeltaCount", | ||
| } | ||
| AntreaInfoElements = []string{ | ||
| AntreaInfoElementsCommon = []string{ |
There was a problem hiding this comment.
does not need to be exported I think... could be antreaInfoElementsCommon
|
|
||
| func getElemList(ianaIE []string, antreaIE []string) []*ipfixentities.InfoElementWithValue { | ||
| // Following consists of all elements that are in IANAInfoElements and AntreaInfoElements (globals) | ||
| // Need only element name and other are dummys |
There was a problem hiding this comment.
s/other are dummys/other fields are set to dummy values
Co-authored-by: Antonin Bas <antonin.bas@gmail.com> Co-authored-by: srikartati <stati@vmware.com>
|
/test-all |
|
/test-conformance |
|
Thank you a lot for the effort to review! @antoninbas @srikartati |
Co-authored-by: Antonin Bas <antonin.bas@gmail.com> Co-authored-by: srikartati <stati@vmware.com>
No description provided.