kube-ovn icon indicating copy to clipboard operation
kube-ovn copied to clipboard

Published 20 hours ago verified publisher icon kubeovn

Vpc Nat gw fip 重复测试不断重建,偶现回包不正常

Open bobz965 opened this issue 2 years ago • 0 comments

Expected Behavior

解决偶现的问题

Actual Behavior

Steps to Reproduce the Problem

  1. 重复创建nat-gw-pod,创建和删除 fip 有概率出现

ping fip 不通时的情况

image

ping fip 正常时的情况

image

对比发现 少了net1网卡 ttl 64的回包,应该是丢包了

正常和失败时的路由配置都是一致的

image

fip的nats 也是都存在,且一致的,这个没有截图,但是可以确定

image

ovn-controller并没有发生什么无法恢复的问题,

Additional Info

  • Kubernetes version:

    Output of kubectl version:

[root@hci-ctrl-1 centos]# kubectl version Client Version: version.Info{Major:"1", Minor:"23", GitVersion:"v1.23.7", GitCommit:"42c05a547468804b2053ecf60a3bd15560362fc2", GitTreeState:"clean", BuildDate:"2022-05-24T12:30:55Z", GoVersion:"go1.17.10", Compiler:"gc", Platform:"linux/amd64"} Server Version: version.Info{Major:"1", Minor:"23", GitVersion:"v1.23.7", GitCommit:"42c05a547468804b2053ecf60a3bd15560362fc2", GitTreeState:"clean", BuildDate:"2022-05-24T12:24:41Z", GoVersion:"go1.17.10", Compiler:"gc", Platform:"linux/amd64"}

[root@hci-ctrl-1 centos]# kubectl get node -A -o wide NAME STATUS ROLES AGE VERSION INTERNAL-IP EXTERNAL-IP OS-IMAGE KERNEL-VERSION CONTAINER-RUNTIME hci-compute-1 Ready 5d5h v1.23.7 10.122.16.101 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-10 Ready 5d5h v1.23.7 10.122.16.110 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-11 Ready 5d5h v1.23.7 10.122.16.111 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-2 Ready 5d5h v1.23.7 10.122.16.102 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-3 Ready 5d5h v1.23.7 10.122.16.103 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-4 Ready 5d5h v1.23.7 10.122.16.104 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-5 Ready 5d5h v1.23.7 10.122.16.105 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-6 Ready 5d5h v1.23.7 10.122.16.106 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-7 Ready 5d5h v1.23.7 10.122.16.107 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-8 Ready 5d5h v1.23.7 10.122.16.108 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-9 Ready 5d5h v1.23.7 10.122.16.109 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-1 Ready 5d5h v1.23.7 10.122.16.41 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-2 Ready 5d5h v1.23.7 10.122.16.42 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-3 Ready 5d5h v1.23.7 10.122.16.43 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-4 Ready 5d5h v1.23.7 10.122.16.44 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-5 Ready 5d5h v1.23.7 10.122.16.45 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xnet-6 Ready 5d5h v1.23.7 10.122.16.46 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xsto-1 Ready 5d5h v1.23.7 10.122.16.71 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xsto-2 Ready 5d5h v1.23.7 10.122.16.72 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-compute-xsto-3 Ready 5d5h v1.23.7 10.122.16.73 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-ctrl-1 Ready control-plane,master 5d5h v1.23.7 10.122.16.31 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-ctrl-2 Ready control-plane,master 5d5h v1.23.7 10.122.16.32 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4 hci-ctrl-3 Ready control-plane,master 5d5h v1.23.7 10.122.16.33 CentOS Stream 8 5.4.196-1.el8.elrepo.x86_64 containerd://1.6.4


- kube-ovn version:

[root@hci-ctrl-1 centos]# kubectl get po -n kube-system kube-ovn-controller-779bf6bb5-hcjg7 -o yaml | grep image image: kubeovn/kube-ovn:v1.10.0 imagePullPolicy: IfNotPresent image: docker.io/kubeovn/kube-ovn:v1.10.0 imageID: docker.io/kubeovn/kube-ovn@sha256:7518d9018c5ae35ce013675c434b4bea37cde3dfe5b492c3f42d786dd06b5e51


- operation-system/kernel version:

**Output of `awk -F '=' '/PRETTY_NAME/ { print $2 }' /etc/os-release`:**
**Output of `uname -r`:**

"CentOS Stream 8" 5.4.196-1.el8.elrepo.x86_64


<!-- Any other additional information -->

bobz965 avatar Jun 20 '22 08:06 bobz965