LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
27337 Commits
1 Branch
46 MiB
Branch: lilik-openwrt-22.03
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'lilik-openwrt-22.03'
${ noResults }
openwrt-packages-dist/net/openvswitch/README.md

108 lines
5.5 KiB
Raw Permalink Normal View History

openvswitch: rework packaging New scheme mainly provides three packages: openvswitch, openvswitch-ovn-north, openvswitch-ovn-controller. These should fit most usage scenarios. Other subpackages like openvswitch-libXXX etc. are there for dependency management and are hidden from the menu. Many python and shell scripts are removed in this revision. Most of them cannot run out of box at all for lack of dependencies. Others being legacy ones are not that useful now. Add them back at later time when real need appears Below are a simple listing of additions - initscript now incorporate also ovn north and controller support - ovn-ctl and ovs-ctl can be invoked directly from within $PATH Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
6 years ago
openvswitch: provide in-tree kmod builds Open vSwitch 2.10 introduces meters support to the kernel datapath. In upstream Linux, the feature is only available since 4.15 This is mainly for make the newly introduced meter features in linux kernel datapath more easily available root@OpenWrt:/# ovs-ofctl -OOpenFlow13 meter-features br0 OFPST_METER_FEATURES reply (OF1.3) (xid=0x2): max_meter:4294967295 max_bands:1 max_color:0 band_types: drop capabilities: kbps pktps burst stats root@OpenWrt:/# Size comparison between in-tree and upstreamed modules are attached 2800 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-geneve-intree/lib/modules/4.14.67/vport-geneve.ko 2736 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-geneve/lib/modules/4.14.67/vport-geneve.ko 2596 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-gre-intree/lib/modules/4.14.67/vport-gre.ko 2536 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-gre/lib/modules/4.14.67/vport-gre.ko 288320 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-intree/lib/modules/4.14.67/openvswitch.ko 118984 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch/lib/modules/4.14.67/openvswitch.ko 2792 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-lisp-intree/lib/modules/4.14.67/vport-lisp.ko 2788 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-stt-intree/lib/modules/4.14.67/vport-stt.ko 3668 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-vxlan-intree/lib/modules/4.14.67/vport-vxlan.ko 3400 Sep 5 08:47 ipkg-mips_24kc/kmod-openvswitch-vxlan/lib/modules/4.14.67/vport-vxlan.ko Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
6 years ago
openvswitch: adds new UCI section ovs_bridge This new config section in package openvswitch supports creating a named bridge, and setting its' OpenFlow controller end-point. An example config is included in /rom/etc/config/openvswitch Signed-off-by: Simon Kinane <skinane@fb.com>
4 years ago
openvswitch: allow complex port configurations The current way to add ports to an Open vSwitch bridge does not allow complex port configurations. Use a dedicated uci config section per port instead of the current port:type syntax. This way we can easily support more features like setting the VLAN tag or the OpenFlow port number. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
3 years ago
openvswitch: adds new UCI section ovs_bridge This new config section in package openvswitch supports creating a named bridge, and setting its' OpenFlow controller end-point. An example config is included in /rom/etc/config/openvswitch Signed-off-by: Simon Kinane <skinane@fb.com>
4 years ago
openvswitch: add SSL support Open vSwitch supports SSL to connect to an OpenFlow controller. This is recommended for security. Expand the UCI ovs config section to allow configuring SSL CA, certificate and private key. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
3 years ago
openvswitch: adds new UCI section ovs_bridge This new config section in package openvswitch supports creating a named bridge, and setting its' OpenFlow controller end-point. An example config is included in /rom/etc/config/openvswitch Signed-off-by: Simon Kinane <skinane@fb.com>
4 years ago
openvswitch: document missing options Commit 1038ac123558 ("openvswitch: add support for definining bridge ports...") added two new options: - drop_unknown_ports - ports They are missing from the README, so add them. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
3 years ago
openvswitch: allow complex port configurations The current way to add ports to an Open vSwitch bridge does not allow complex port configurations. Use a dedicated uci config section per port instead of the current port:type syntax. This way we can easily support more features like setting the VLAN tag or the OpenFlow port number. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
3 years ago
 
  1. # Which packages to install

  2. 

  3. Install `openvswitch` if you need OpenFlow virtual switch function.  It
  4. contains ovs-vswitchd, ovsdb-server and helper utilities such as ovs-vsctl,
  5. ovs-ofctl, ovs-ctl etc.
  6. 

  7. Linux kernel datapath module openvswitch.ko will also be installed along with
  8. package `openvswitch`.  Tunnel encap support for gre, geneve, vxlan can be
  9. included by installing `kmod-openvswitch-{gre,geneve,vxlan}` respectively
  10. 

  11. For OVN deployment
  12. 

  13. - Install `openvswitch-ovn-north` for ovs-northd, ovsdb-server, ovn helper utitlies
  14. - Install `openvswitch-ovn-host` for ovn-controller and `openvswitch`
  15. 

  16. # How to use them

  17. 

  18. Open vSwitch provides a few very useful helper script in
  19. `/usr/share/openvswitch/scripts/`.  A simple initscript is provided.  It's
  20. mainly a wrapper around `ovs-ctl` and `ovn-ctl` with simple knobs from
  21. `/etc/config/openvswitch`.  Procd is not used here.
  22. 

  23. 	/etc/init.d/openvswitch start
  24. 	/etc/init.d/openvswitch stop
  25. 	/etc/init.d/openvswitch stop north
  26. 	/etc/init.d/openvswitch restart ovs
  27. 	/etc/init.d/openvswitch status
  28. 

  29. Use `ovs-ctl` and `ovn-ctl` directly for more functionalities
  30. 

  31. # Open vSwitch in-tree Linux datapath modules

  32. 

  33. The Open vSwitch build system uses regexp and conditional-compilation
  34. heuristics to support building the shipped kernel module source code against a
  35. wide range of kernels, as of openvswitch-2.10, the list is supposed to include
  36. vanilla linux 3.10 to 4.15, plus a few distro kernels.
  37. 

  38. It may NOT work
  39. 

  40.  - Sometimes the code does not compile
  41.  - Sometimes the code compiles but insmod will fail
  42.  - Sometimes modules are loaded okay but actually does not function right
  43. 

  44. For these reasons, the in-tree datapath modules are NOT visible/enabled by
  45. default.
  46. 

  47. Building and using in-tree datapath modules requires some level of devel
  48. abilities to proceed.  You are expected to configure build options and build
  49. the code on your own
  50. 

  51. E.g. pair openvswitch userspace with in-tree datapath module
  52. 

  53. 	CONFIG_DEVEL=y
  54. 	CONFIG_PACKAGE_openvswitch=y
  55. 	# CONFIG_PACKAGE_kmod-openvswitch is not set
  56. 	CONFIG_PACKAGE_kmod-openvswitch-intree=y
  57. 

  58. E.g. replace in-tree datapath module with upstream version
  59. 

  60. 	opkg remove --force-depends kmod-openvswitch-intree
  61. 	opkg install kmod-openvswitch
  62. 	ovs-ctl force-reload-kmod
  63. 

  64. # UCI configuration options

  65. 

  66. There are 5 config section types in package openvswitch:
  67. ovs ovn_northd, ovn_controller & ovs_bridge.
  68. 

  69. Each of these supports a disabled option, which should be 
  70. set to 0 to launch the respective daemons.
  71. 

  72. The ovs section section also supports the options below, to configure a set of
  73. SSL CA, certificate and private key. After adding these to Open vSwitch, you
  74. may specify ssl: connection methods for e.g. the OpenFlow controller. Note that
  75. Open vSwitch only reads these files during startup, so it needs to be restarted
  76. after adding or changing these options.
  77. 

  78. | Name     | Type    | Required | Default | Description                       |
  79. |----------|---------|----------|---------|-----------------------------------|
  80. | disabled | boolean | no       | 0       | If set to 1, do not configure SSL |
  81. | ca       | string  | no       | (none)  | Path to CA certificate            |
  82. | cert     | string  | no       | (none)  | Path to certificate               |
  83. | key      | string  | no       | (none)  | Path to private key               |
  84. 

  85. The ovs_bridge section also supports the options below,
  86. for initialising a virtual bridge with an OpenFlow controller.
  87. 

  88. | Name               | Type    | Required | Default                        | Description                                                |
  89. |--------------------|---------|----------|--------------------------------|------------------------------------------------------------|
  90. | disabled           | boolean | no       | 0                              | If set to true, disable initialisation of the named bridge |
  91. | name               | string  | no       | Inherits UCI config block name | The name of the switch in the OVS daemon                   |
  92. | controller         | string  | no       | (none)                         | The endpoint of an OpenFlow controller for this bridge     |
  93. | datapath_id        | string  | no       | (none)                         | The OpenFlow datapath ID for this bridge                   |
  94. | datapath_desc      | string  | no       | (none)                         | The OpenFlow datapath description for this bridge          |
  95. | drop_unknown_ports | boolean | no       | 0                              | Remove ports not defined in UCI from the bridge            |
  96. | fail_mode          | string  | no       | standalone                     | The bridge failure mode                                    |
  97. | ports              | list    | no       | (none)                         | List of ports to add to the bridge                         |
  98. 

  99. The ovs_port section can be used to add ports to a bridge. It supports the options below.
  100. 

  101. | Name     | Type    | Required | Default | Description
  102. | ---------|---------|----------|---------|------------------------------------------------|
  103. | disabled | boolean | no       | 0       | If set to 1, do not add the port to the bridge |
  104. | bridge   | string  | yes      | (none)  | Name of the bridge to add the port to          |
  105. | port     | string  | yes      | (none)  | Name of the port to add to the bridge          |
  106. | ofport   | integer | no       | (none)  | OpenFlow port number to be used by the port    |
  107. | tag      | integer | no       | (none)  | 802.1Q VLAN tag to set on the port             |
  108. | type     | string  | no       | (none)  | Port type, e.g. internal, erspan, type, ...    |