Visualizing the traffic flow when using Open vSwitch
When using the Open vSwitch driver, for an Ethernet frame to travel from the virtual machine instance out through the physical server interface, it will potentially pass through nine devices inside the host:
The tap interface:
tapXXXXThe Linux bridge:
qbrXXXXThe veth pair:
qvbXXXX,qvoXXXXThe OVS integration bridge:
br-intOVS patch ports:
int-br-ethXandphy-br-ethXThe OVS provider bridge:
br-ethXThe physical interface:
ethXThe OVS tunnel bridge:
br-tun
The Open vSwitch bridge br-int is known as the integration bridge. The integration bridge is the central virtual switch that most virtual devices are connected to, including instances, DHCP servers, routers, and more. When Neutron security groups are enabled, however, instances are not directly connected to the integration bridge. Instead, instances are connected to individual Linux bridges that are cross connected to the integration bridge using a veth cable.
Note
The reliance on Linux bridges...
