ovn-detrace - Man Page

convert “ovs-appctl ofproto/trace” output to combine OVN logical flow information.

Synopsis

ovn-detrace < file

Common options:

[-h | --help] [-V | --version]

Description

The ovn-detrace program reads ovs-appctl ofproto/trace output on stdin, looking for flow cookies, and expand each cookie with corresponding OVN logical flows. It expands logical flow further with the north-bound information e.g. the ACL that generated the logical flow, when relevant.

Options

-h
--help

Prints a brief help message to the console.

-V
--version

Prints version information to the console.

--ovnsb=server

The OVN Southbound DB remote to contact.  If the OVN_SB_DB environment variable is set, its value is used as the default. Otherwise, the default is unix:@RUNDIR@/ovnsb_db.sock, but this default is unlikely to be useful outside of single-machine OVN test environments.

--ovnnb=server

The OVN Northbound DB remote to contact.  If the OVN_NB_DB environment variable is set, its value is used as the default. Otherwise, the default is unix:@RUNDIR@/ovnnb_db.sock, but this default is unlikely to be useful outside of single-machine OVN test environments.

--ovs=

Also decode flow information (like OVS ofport) from the flows by connecting to the OVS DB.

--ovsdb=server

The OVS DB remote to contact if --ovs is present.  If the OVS_RUNDIR environment variable is set, its value is used as the default. Otherwise, the default is unix:@RUNDIR@/db.sock, but this default is unlikely to be useful outside of single-machine OVN test environments.

-p privkey.pem
--private-key=privkey.pem

Specifies a PEM file containing the private key used as ovn-detrace's identity for outgoing SSL connections.

-c cert.pem
--certificate=cert.pem

Specifies a PEM file containing a certificate that certifies the private key specified on -p or --private-key to be trustworthy.  The certificate must be signed by the certificate authority (CA) that the peer in SSL connections will use to verify it.

-C cacert.pem
--ca-cert=cacert.pem

Specifies a PEM file containing the CA certificate that ovn-detrace should use to verify certificates presented to it by SSL peers.  (This may be the same certificate that SSL peers use to verify the certificate specified on -c or --certificate, or it may be a different one, depending on the PKI design in use.)

See Also

ovs-appctl(8),ovn-sbctl(8),ovn-nbctl(8),ovn-trace(8)

Info

20.12.0 OVN Manual