/* * Copyright © 2017 Ericsson India Global Services Pvt Ltd. and others. All rights reserved. * * This program and the accompanying materials are made available under the * terms of the Eclipse Public License v1.0 which accompanies this distribution, * and is available at http://www.eclipse.org/legal/epl-v10.html */ package org.opendaylight.netvirt.natservice.internal; import java.math.BigInteger; import java.util.ArrayList; import java.util.Collections; import java.util.List; import org.opendaylight.controller.md.sal.binding.api.DataBroker; import org.opendaylight.genius.datastoreutils.listeners.DataTreeEventCallbackRegistrar; import org.opendaylight.genius.infra.Datastore.Configuration; import org.opendaylight.genius.infra.TypedReadWriteTransaction; import org.opendaylight.genius.infra.TypedWriteTransaction; import org.opendaylight.genius.interfacemanager.interfaces.IInterfaceManager; import org.opendaylight.genius.mdsalutil.ActionInfo; import org.opendaylight.genius.mdsalutil.BucketInfo; import org.opendaylight.genius.mdsalutil.GroupEntity; import org.opendaylight.genius.mdsalutil.InstructionInfo; import org.opendaylight.genius.mdsalutil.MDSALUtil; import org.opendaylight.genius.mdsalutil.MatchInfo; import org.opendaylight.genius.mdsalutil.MatchInfoBase; import org.opendaylight.genius.mdsalutil.MetaDataUtil; import org.opendaylight.genius.mdsalutil.NwConstants; import org.opendaylight.genius.mdsalutil.actions.ActionGroup; import org.opendaylight.genius.mdsalutil.actions.ActionNxConntrack; import org.opendaylight.genius.mdsalutil.actions.ActionNxConntrack.NxCtAction; import org.opendaylight.genius.mdsalutil.actions.ActionNxLoadInPort; import org.opendaylight.genius.mdsalutil.actions.ActionNxResubmit; import org.opendaylight.genius.mdsalutil.actions.ActionSetFieldMeta; import org.opendaylight.genius.mdsalutil.actions.ActionSetFieldTunnelId; import org.opendaylight.genius.mdsalutil.instructions.InstructionApplyActions; import org.opendaylight.genius.mdsalutil.interfaces.IMdsalApiManager; import org.opendaylight.genius.mdsalutil.matches.MatchEthernetType; import org.opendaylight.genius.mdsalutil.matches.MatchIpv4Destination; import org.opendaylight.genius.mdsalutil.matches.MatchMetadata; import org.opendaylight.genius.mdsalutil.matches.MatchTunnelId; import org.opendaylight.genius.mdsalutil.nxmatches.NxMatchCtState; import org.opendaylight.netvirt.elanmanager.api.IElanService; import org.opendaylight.netvirt.fibmanager.api.IFibManager; import org.opendaylight.netvirt.natservice.ha.NatDataUtil; import org.opendaylight.netvirt.vpnmanager.api.IVpnFootprintService; import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.yang.types.rev130715.Uuid; import org.opendaylight.yang.gen.v1.urn.opendaylight.genius.idmanager.rev160406.IdManagerService; import org.opendaylight.yang.gen.v1.urn.opendaylight.genius.interfacemanager.rpcs.rev160406.OdlInterfaceRpcService; import org.opendaylight.yang.gen.v1.urn.opendaylight.genius.itm.rpcs.rev160406.ItmRpcService; import org.opendaylight.yang.gen.v1.urn.opendaylight.group.types.rev131018.GroupTypes; import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.natservice.rev160111.ProviderTypes; import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.natservice.rev160111.ext.routers.Routers; import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.natservice.rev160111.ext.routers.routers.ExternalIps; import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.types.rev160517.IpPrefixOrAddress; import org.opendaylight.yang.gen.v1.urn.opendaylight.openflowjava.nx.action.rev140421.NxActionNatFlags; import org.opendaylight.yang.gen.v1.urn.opendaylight.openflowjava.nx.action.rev140421.NxActionNatRangePresent; import org.slf4j.Logger; import org.slf4j.LoggerFactory; public class VxlanGreConntrackBasedSnatService extends ConntrackBasedSnatService { private static final Logger LOG = LoggerFactory.getLogger(VxlanGreConntrackBasedSnatService.class); private final ExternalRoutersListener externalRouterListener; private final IElanService elanManager; public VxlanGreConntrackBasedSnatService(DataBroker dataBroker, IMdsalApiManager mdsalManager, ItmRpcService itmManager, OdlInterfaceRpcService odlInterfaceRpcService, IdManagerService idManager, NAPTSwitchSelector naptSwitchSelector, ExternalRoutersListener externalRouterListener, IElanService elanManager, IInterfaceManager interfaceManager, IVpnFootprintService vpnFootprintService, IFibManager fibManager, NatDataUtil natDataUtil, DataTreeEventCallbackRegistrar eventCallbacks) { super(dataBroker, mdsalManager, itmManager, idManager, naptSwitchSelector, odlInterfaceRpcService, interfaceManager, vpnFootprintService, fibManager, natDataUtil, eventCallbacks); this.externalRouterListener = externalRouterListener; this.elanManager = elanManager; } @Override public boolean addSnatAllSwitch(TypedReadWriteTransaction confTx, Routers routers, BigInteger primarySwitchId) { ProviderTypes extNwProviderType = NatUtil.getProviderTypefromNetworkId(confTx, routers.getNetworkId()); LOG.debug("VxlanGreConntrackBasedSnatService: handleSnatAllSwitch ProviderTypes {}", extNwProviderType); if (extNwProviderType == ProviderTypes.FLAT || extNwProviderType == ProviderTypes.VLAN) { LOG.debug("handleSnatAllSwitch : Skip FLAT/VLAN provider networks."); return true; } return super.addSnatAllSwitch(confTx, routers, primarySwitchId); } @Override public boolean removeSnatAllSwitch(TypedReadWriteTransaction confTx, Routers routers, BigInteger primarySwitchId) { ProviderTypes extNwProviderType = NatUtil.getProviderTypefromNetworkId(confTx, routers.getNetworkId()); LOG.debug("VxlanGreConntrackBasedSnatService: handleSnatAllSwitch ProviderTypes {}", extNwProviderType); if (extNwProviderType == ProviderTypes.FLAT || extNwProviderType == ProviderTypes.VLAN) { LOG.debug("handleSnatAllSwitch : Skip FLAT/VLAN provider networks."); return true; } return super.removeSnatAllSwitch(confTx, routers, primarySwitchId); } @Override public boolean addSnat(TypedReadWriteTransaction confTx, Routers routers, BigInteger primarySwitchId, BigInteger dpnId) { ProviderTypes extNwProviderType = NatUtil.getProviderTypefromNetworkId(confTx, routers.getNetworkId()); LOG.debug("VxlanGreConntrackBasedSnatService: handleSnat ProviderTypes {}", extNwProviderType); if (extNwProviderType == ProviderTypes.FLAT || extNwProviderType == ProviderTypes.VLAN) { LOG.debug("handleSnat : Skip FLAT/VLAN provider networks."); return true; } return super.addSnat(confTx, routers, primarySwitchId, dpnId); } @Override public boolean removeSnat(TypedReadWriteTransaction confTx, Routers routers, BigInteger primarySwitchId, BigInteger dpnId) { ProviderTypes extNwProviderType = NatUtil.getProviderTypefromNetworkId(confTx, routers.getNetworkId()); LOG.debug("VxlanGreConntrackBasedSnatService: handleSnat ProviderTypes {}", extNwProviderType); if (extNwProviderType == ProviderTypes.FLAT || extNwProviderType == ProviderTypes.VLAN) { LOG.debug("handleSnat : Skip FLAT/VLAN provider networks."); return true; } return super.removeSnat(confTx, routers, primarySwitchId, dpnId); } @Override protected void addSnatSpecificEntriesForNaptSwitch(TypedReadWriteTransaction confTx, Routers routers, BigInteger dpnId) { LOG.info("installSnatSpecificEntriesForNaptSwitch for router {}", routers.getRouterName()); String routerName = routers.getRouterName(); Long routerId = NatUtil.getVpnId(dataBroker, routerName); int elanId = NatUtil.getElanInstanceByName(routers.getNetworkId().getValue(), dataBroker) .getElanTag().intValue(); /* Install Outbound NAT entries */ addSnatMissEntryForPrimrySwch(confTx, dpnId, routerId, elanId); addTerminatingServiceTblEntryForVxlanGre(confTx, dpnId, routerName, routerId, elanId); //Long extNetVpnId = NatUtil.getNetworkVpnIdFromRouterId(dataBroker, routerId); Uuid vpnUuid = NatUtil.getVpnIdfromNetworkId(dataBroker, routers.getNetworkId()); if (vpnUuid == null) { LOG.error("installSnatSpecificEntriesForNaptSwitch: Unable to retrieve external vpn_id for " + "external network {} with routerId {}", routers.getNetworkId(), routerId); return; } Long extNetVpnId = NatUtil.getVpnId(dataBroker, vpnUuid.getValue()); LOG.info("installSnatSpecificEntriesForNaptSwitch: external network vpn_id {} for router {}", extNetVpnId, routers.getRouterName()); List externalIps = routers.getExternalIps(); addOutboundTblTrackEntryForVxlanGre(confTx, dpnId, routerId, extNetVpnId); addOutboundTblEntryForVxlanGre(confTx, dpnId, routerId, extNetVpnId, externalIps, elanId); addNaptPfibFlowForVxlanGre(confTx, routers, dpnId, extNetVpnId); addNaptPfibEntry(confTx, dpnId, routerId); //Install Inbound NAT entries addInboundEntryForVxlanGre(confTx, dpnId, routerId, extNetVpnId, externalIps, elanId); if (externalIps.isEmpty()) { LOG.error("installSnatSpecificEntriesForNaptSwitch: No externalIP present for router {}", routerName); return; } //The logic now handle only one external IP per router, others if present will be ignored. String externalIp = NatUtil.validateAndAddNetworkMask(externalIps.get(0).getIpAddress()); externalRouterListener.handleSnatReverseTraffic(confTx, dpnId, routers, routerId, routerName, externalIp); } @Override protected void removeSnatSpecificEntriesForNaptSwitch(TypedReadWriteTransaction confTx, Routers routers, BigInteger dpnId) { LOG.info("installSnatSpecificEntriesForNaptSwitch for router {}", routers.getRouterName()); String routerName = routers.getRouterName(); Long routerId = NatUtil.getVpnId(dataBroker, routerName); /* Remove Outbound NAT entries */ removeSnatMissEntryForPrimrySwch(confTx, dpnId, routerId); removeTerminatingServiceTblEntryForVxlanGre(confTx, dpnId, routerId); //Long extNetVpnId = NatUtil.getNetworkVpnIdFromRouterId(dataBroker, routerId); Uuid vpnUuid = NatUtil.getVpnIdfromNetworkId(dataBroker, routers.getNetworkId()); if (vpnUuid == null) { LOG.error("installSnatSpecificEntriesForNaptSwitch: Unable to retrieve external vpn_id for " + "external network {} with routerId {}", routers.getNetworkId(), routerId); return; } Long extNetVpnId = NatUtil.getVpnId(dataBroker, vpnUuid.getValue()); LOG.info("installSnatSpecificEntriesForNaptSwitch: external network vpn_id {} for router {}", extNetVpnId, routers.getRouterName()); List externalIps = routers.getExternalIps(); removeOutboundTblTrackEntryForVxlanGre(confTx, dpnId, routerId); removeOutboundTblEntryForVxlanGre(confTx, dpnId, routerId, externalIps); removeNaptPfibFlowForVxlanGre(confTx, routers, dpnId, extNetVpnId); removeNaptPfibEntry(confTx, dpnId, routerId); //Install Inbound NAT entries removeInboundEntryForVxlanGre(confTx, dpnId, routerId, externalIps); if (externalIps.isEmpty()) { LOG.error("installSnatSpecificEntriesForNaptSwitch: No externalIP present for router {}", routerName); return; } //The logic now handle only one external IP per router, others if present will be ignored. String externalIp = NatUtil.validateAndAddNetworkMask(externalIps.get(0).getIpAddress()); externalRouterListener.clearFibTsAndReverseTraffic(dpnId, routerId, routers.getNetworkId(), Collections.singletonList(externalIp), null, routers.getExtGwMacAddress(), confTx); } protected void addOutboundTblTrackEntryForVxlanGre(TypedWriteTransaction confTx, BigInteger dpnId, Long routerId, Long extNetVpnId) { LOG.info("createOutboundTblTrackEntryForVxlanGre: Install Outbound tracking table flow on dpId {} for " + "routerId {}", dpnId, routerId); List matches = new ArrayList<>(); matches.add(MatchEthernetType.IPV4); matches.add(new NxMatchCtState(SNAT_CT_STATE, SNAT_CT_STATE_MASK)); matches.add(new MatchMetadata(MetaDataUtil.getVpnIdMetadata(routerId), MetaDataUtil.METADATA_MASK_VRFID)); ArrayList listActionInfo = new ArrayList<>(); ActionSetFieldMeta actionSetFieldMeta = new ActionSetFieldMeta(MetaDataUtil.getVpnIdMetadata(extNetVpnId)); listActionInfo.add(actionSetFieldMeta); ArrayList instructionInfo = new ArrayList<>(); listActionInfo.add(new ActionNxResubmit(NwConstants.NAPT_PFIB_TABLE)); instructionInfo.add(new InstructionApplyActions(listActionInfo)); String flowRef = getFlowRef(dpnId, NwConstants.OUTBOUND_NAPT_TABLE, routerId) + "trkest"; addFlow(confTx, dpnId, NwConstants.OUTBOUND_NAPT_TABLE, flowRef, NatConstants.SNAT_TRK_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructionInfo); } protected void removeOutboundTblTrackEntryForVxlanGre(TypedReadWriteTransaction confTx, BigInteger dpnId, Long routerId) { LOG.info("createOutboundTblTrackEntryForVxlanGre: Install Outbound tracking table flow on dpId {} for " + "routerId {}", dpnId, routerId); String flowRef = getFlowRef(dpnId, NwConstants.OUTBOUND_NAPT_TABLE, routerId) + "trkest"; removeFlow(confTx, dpnId, NwConstants.OUTBOUND_NAPT_TABLE, flowRef); } protected void addOutboundTblEntryForVxlanGre(TypedWriteTransaction confTx, BigInteger dpnId, long routerId, Long extNetVpnId, List externalIps, int elanId) { LOG.info("createOutboundTblEntryForVxlanGre: Install Outbound table flow on dpId {} for routerId {}", dpnId, routerId); List matches = new ArrayList<>(); matches.add(MatchEthernetType.IPV4); matches.add(new NxMatchCtState(TRACKED_NEW_CT_STATE, TRACKED_NEW_CT_MASK)); matches.add(new MatchMetadata(MetaDataUtil.getVpnIdMetadata(routerId), MetaDataUtil.METADATA_MASK_VRFID)); if (externalIps.isEmpty()) { LOG.error("createOutboundTblEntryForVxlanGre: No externalIP present for routerId {}", routerId); return; } //The logic now handle only one external IP per router, others if present will be ignored. String externalIp = externalIps.get(0).getIpAddress(); List actionsInfos = new ArrayList<>(); ActionSetFieldMeta actionSetFieldMeta = new ActionSetFieldMeta(MetaDataUtil .getVpnIdMetadata(extNetVpnId)); actionsInfos.add(actionSetFieldMeta); List ctActionsListCommit = new ArrayList<>(); int rangePresent = NxActionNatRangePresent.NXNATRANGEIPV4MIN.getIntValue(); int flags = NxActionNatFlags.NXNATFSRC.getIntValue(); ActionNxConntrack.NxCtAction nxCtActionCommit = new ActionNxConntrack.NxNat(0, flags, rangePresent, new IpPrefixOrAddress(externalIp.toCharArray()).getIpAddress(), null,0, 0); ctActionsListCommit.add(nxCtActionCommit); int ctCommitFlag = 1; ActionNxConntrack actionNxConntrackSubmit = new ActionNxConntrack(ctCommitFlag, 0, elanId, NwConstants.NAPT_PFIB_TABLE, ctActionsListCommit); actionsInfos.add(actionNxConntrackSubmit); List instructions = new ArrayList<>(); instructions.add(new InstructionApplyActions(actionsInfos)); String flowRef = getFlowRef(dpnId, NwConstants.OUTBOUND_NAPT_TABLE, routerId); addFlow(confTx, dpnId, NwConstants.OUTBOUND_NAPT_TABLE, flowRef, NatConstants.SNAT_NEW_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructions); } protected void removeOutboundTblEntryForVxlanGre(TypedReadWriteTransaction confTx, BigInteger dpnId, long routerId, List externalIps) { LOG.info("createOutboundTblEntryForVxlanGre: Install Outbound table flow on dpId {} for routerId {}", dpnId, routerId); if (externalIps.isEmpty()) { LOG.error("createOutboundTblEntryForVxlanGre: No externalIP present for routerId {}", routerId); return; } //The logic now handle only one external IP per router, others if present will be ignored. String flowRef = getFlowRef(dpnId, NwConstants.OUTBOUND_NAPT_TABLE, routerId); removeFlow(confTx, dpnId, NwConstants.OUTBOUND_NAPT_TABLE, flowRef); } protected void addNaptPfibFlowForVxlanGre(TypedWriteTransaction confTx, Routers routers, BigInteger dpnId, Long extNetVpnId) { LOG.info("installNaptPfibFlowForVxlanGre: Install Napt preFibFlow on dpId {} with matching extNetVpnId {} " + "for router {}", dpnId, extNetVpnId, routers.getRouterName()); List matches = new ArrayList<>(); matches.add(MatchEthernetType.IPV4); matches.add(new MatchMetadata(MetaDataUtil.getVpnIdMetadata(extNetVpnId), MetaDataUtil.METADATA_MASK_VRFID)); ArrayList listActionInfo = new ArrayList<>(); ArrayList instructions = new ArrayList<>(); listActionInfo.add(new ActionNxLoadInPort(BigInteger.ZERO)); listActionInfo.add(new ActionNxResubmit(NwConstants.L3_FIB_TABLE)); instructions.add(new InstructionApplyActions(listActionInfo)); String flowRef = getFlowRef(dpnId, NwConstants.NAPT_PFIB_TABLE, extNetVpnId); addFlow(confTx, dpnId, NwConstants.NAPT_PFIB_TABLE, flowRef, NatConstants.SNAT_TRK_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructions); } protected void removeNaptPfibFlowForVxlanGre(TypedReadWriteTransaction confTx, Routers routers, BigInteger dpnId, Long extNetVpnId) { LOG.info("installNaptPfibFlowForVxlanGre: Install Napt preFibFlow on dpId {} with matching extNetVpnId {} " + "for router {}", dpnId, extNetVpnId, routers.getRouterName()); String flowRef = getFlowRef(dpnId, NwConstants.NAPT_PFIB_TABLE, extNetVpnId); removeFlow(confTx, dpnId, NwConstants.NAPT_PFIB_TABLE, flowRef); } protected void addInboundEntryForVxlanGre(TypedWriteTransaction confTx, BigInteger dpnId, long routerId, Long extNeVpnId, List externalIps, int elanId) { LOG.info("installInboundEntryForVxlanGre: Install Inbound table entry on dpId {} for routerId {}", dpnId, routerId); List matches = new ArrayList<>(); matches.add(MatchEthernetType.IPV4); if (externalIps.isEmpty()) { LOG.error("installInboundEntryForVxlanGre : createInboundTblEntry no externalIP present for routerId {}", routerId); return; } String externalIp = externalIps.get(0).getIpAddress(); matches.add(new MatchIpv4Destination(externalIp,"32")); matches.add(new MatchMetadata(MetaDataUtil.getVpnIdMetadata(extNeVpnId), MetaDataUtil.METADATA_MASK_VRFID)); List actionsInfos = new ArrayList<>(); List ctActionsList = new ArrayList<>(); ActionNxConntrack.NxCtAction nxCtAction = new ActionNxConntrack.NxNat(0, 0, 0,null, null,0, 0); ActionSetFieldMeta actionSetFieldMeta = new ActionSetFieldMeta(MetaDataUtil .getVpnIdMetadata(routerId)); actionsInfos.add(actionSetFieldMeta); ctActionsList.add(nxCtAction); ActionNxConntrack actionNxConntrack = new ActionNxConntrack(0, 0, elanId, NwConstants .NAPT_PFIB_TABLE,ctActionsList); actionsInfos.add(actionNxConntrack); List instructions = new ArrayList<>(); instructions.add(new InstructionApplyActions(actionsInfos)); String flowRef = getFlowRef(dpnId, NwConstants.INBOUND_NAPT_TABLE, routerId); addFlow(confTx, dpnId, NwConstants.INBOUND_NAPT_TABLE, flowRef, NatConstants.DEFAULT_TS_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructions); } protected void removeInboundEntryForVxlanGre(TypedReadWriteTransaction confTx, BigInteger dpnId, long routerId, List externalIps) { LOG.info("removeInboundEntryForVxlanGre: remove Inbound table entry on dpId {} for routerId {}", dpnId, routerId); if (externalIps.isEmpty()) { LOG.error("removeInboundEntryForVxlanGre : createInboundTblEntry no externalIP present for routerId {}", routerId); return; } String flowRef = getFlowRef(dpnId, NwConstants.INBOUND_NAPT_TABLE, routerId); removeFlow(confTx, dpnId, NwConstants.INBOUND_NAPT_TABLE, flowRef); } protected void addTerminatingServiceTblEntryForVxlanGre(TypedWriteTransaction confTx, BigInteger dpnId, String routerName, Long routerId, int elanId) { LOG.info("installTerminatingServiceTblEntryForVxlanGre : creating entry for" + "Terminating Service Table for switch {}, routerId {}", dpnId, routerId); List matches = new ArrayList<>(); matches.add(MatchEthernetType.IPV4); BigInteger tunnelId = BigInteger.valueOf(routerId); if (elanManager.isOpenStackVniSemanticsEnforced()) { tunnelId = NatOverVxlanUtil.getRouterVni(idManager, routerName, routerId); } matches.add(new MatchTunnelId(tunnelId)); List actionsInfos = new ArrayList<>(); List ctActionsList = new ArrayList<>(); NxCtAction nxCtAction = new ActionNxConntrack.NxNat(0, 0, 0,null, null,0, 0); ctActionsList.add(nxCtAction); ActionNxConntrack actionNxConntrack = new ActionNxConntrack(0, 0, elanId, NwConstants .OUTBOUND_NAPT_TABLE,ctActionsList); ActionSetFieldMeta actionSetFieldMeta = new ActionSetFieldMeta(MetaDataUtil .getVpnIdMetadata(routerId.longValue())); actionsInfos.add(actionSetFieldMeta); actionsInfos.add(actionNxConntrack); List instructions = new ArrayList<>(); instructions.add(new InstructionApplyActions(actionsInfos)); String flowRef = getFlowRef(dpnId, NwConstants.INTERNAL_TUNNEL_TABLE, routerId.longValue()); addFlow(confTx, dpnId, NwConstants.INTERNAL_TUNNEL_TABLE, flowRef, NatConstants.DEFAULT_TS_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructions); } protected void removeTerminatingServiceTblEntryForVxlanGre(TypedReadWriteTransaction confTx, BigInteger dpnId, Long routerId) { LOG.info("removeTerminatingServiceTblEntryForVxlanGre : removing entry for" + "Terminating Service Table for switch {}, routerId {}", dpnId, routerId); String flowRef = getFlowRef(dpnId, NwConstants.INTERNAL_TUNNEL_TABLE, routerId.longValue()); removeFlow(confTx, dpnId, NwConstants.INTERNAL_TUNNEL_TABLE, flowRef); } @Override protected void addSnatMissEntry(TypedReadWriteTransaction confTx, BigInteger dpnId, Long routerId, String routerName, BigInteger primarySwitchId) { LOG.debug("installSnatMissEntry : Installing SNAT miss entry in switch {}", dpnId); List listActionInfoPrimary = new ArrayList<>(); String ifNamePrimary = getTunnelInterfaceName(dpnId, primarySwitchId); List listBucketInfo = new ArrayList<>(); if (ifNamePrimary != null) { LOG.debug("installSnatMissEntry : On Non- Napt switch , Primary Tunnel interface is {}", ifNamePrimary); listActionInfoPrimary = NatUtil.getEgressActionsForInterface(odlInterfaceRpcService, itmManager, interfaceManager, ifNamePrimary, routerId, true); } BucketInfo bucketPrimary = new BucketInfo(listActionInfoPrimary); listBucketInfo.add(0, bucketPrimary); LOG.debug("installSnatMissEntry : installSnatMissEntry called for dpnId {} with primaryBucket {} ", dpnId, listBucketInfo.get(0)); // Install the select group long groupId = createGroupId(getGroupIdKey(routerName)); GroupEntity groupEntity = MDSALUtil.buildGroupEntity(dpnId, groupId, routerName, GroupTypes.GroupAll, listBucketInfo); LOG.debug("installSnatMissEntry : installing the SNAT to NAPT GroupEntity:{}", groupEntity); mdsalManager.addGroup(confTx, groupEntity); // Install miss entry pointing to group LOG.debug("installSnatMissEntry : buildSnatFlowEntity is called for dpId {}, routerName {} and groupId {}", dpnId, routerName, groupId); List matches = new ArrayList<>(); matches.add(new MatchEthernetType(0x0800L)); matches.add(new MatchMetadata(MetaDataUtil.getVpnIdMetadata(routerId), MetaDataUtil.METADATA_MASK_VRFID)); List actionsInfo = new ArrayList<>(); BigInteger tunnelId = BigInteger.valueOf(routerId); if (elanManager.isOpenStackVniSemanticsEnforced()) { tunnelId = NatOverVxlanUtil.getRouterVni(idManager, routerName, routerId); } actionsInfo.add(new ActionSetFieldTunnelId(tunnelId)); LOG.debug("AbstractSnatService : Setting the tunnel to the list of action infos {}", actionsInfo); actionsInfo.add(new ActionGroup(groupId)); List instructions = new ArrayList<>(); instructions.add(new InstructionApplyActions(actionsInfo)); String flowRef = getFlowRef(dpnId, NwConstants.PSNAT_TABLE, routerId); addFlow(confTx, dpnId, NwConstants.PSNAT_TABLE, flowRef, NatConstants.DEFAULT_PSNAT_FLOW_PRIORITY, flowRef, NwConstants.COOKIE_SNAT_TABLE, matches, instructions); } @Override protected void removeSnatMissEntry(TypedReadWriteTransaction confTx, BigInteger dpnId, Long routerId, String routerName) { LOG.debug("installSnatMissEntry : Removing SNAT miss entry in switch {}", dpnId); String flowRef = getFlowRef(dpnId, NwConstants.PSNAT_TABLE, routerId); removeFlow(confTx, dpnId, NwConstants.PSNAT_TABLE, flowRef); } }