Skip to content

[openconfig_acl] Add SONiC ACL extension to open config ACL model#6896

Merged
daall merged 3 commits intosonic-net:masterfrom
daall:openconfig_update
Feb 28, 2021
Merged

[openconfig_acl] Add SONiC ACL extension to open config ACL model#6896
daall merged 3 commits intosonic-net:masterfrom
daall:openconfig_update

Conversation

@daall
Copy link
Copy Markdown
Contributor

@daall daall commented Feb 26, 2021

  • Add support for VLAN ID match
  • Add support for ICMP type/code match

Signed-off-by: Danny Allen [email protected]

Why I did it

To allow users to add ACL rules w/ ICMP and VLAN qualifiers via acl-loader.

How I did it

Added sonic-acl-extension.yang to augment the existing OpenConfig spec and used pyangbind to generate a new set of python bindings.

How to verify it

Re-run the ACL tests w/ the new openconfig_acl.py script and verify that all rules are still loaded properly and dataplane behavior is not impacted.

Which release branch to backport (provide reason below if selected)

  • 201811
  • [] 201911
  • 202006
  • 202012

Description for the changelog

A picture of a cute animal (not mandatory but encouraged)

@daall
[openconfig_acl] Add SONiC ACL extension to open config ACL model
cf12886 
- Add support for VLAN ID match
- Add support for ICMP type/code match

Signed-off-by: Danny Allen <[email protected]>
@daall daall requested review from lguohan and qiluo-msft February 26, 2021 00:17
@daall daall mentioned this pull request Feb 26, 2021
Merged
4 tasks
qiluo-msft
qiluo-msft reviewed Feb 26, 2021
View reviewed changes
Comment thread src/sonic-config-engine/sonic-acl-extension.yang Outdated
@daall daall requested review from arlakshm and shi-su February 26, 2021 00:53
@qiluo-msft qiluo-msft requested a review from prsunny February 26, 2021 00:54
@lguohan
Copy link
Copy Markdown
Collaborator

lguohan commented Feb 26, 2021

openconfig_acl.py seems generated code, can we generate the code during the build?

@daall
Copy link
Copy Markdown
Contributor Author

daall commented Feb 28, 2021

openconfig_acl.py seems generated code, can we generate the code during the build?

I would prefer to merge this as-is to unblock the feature and then refine the process to generate the code at build-time.

@daall daall merged commit abb3867 into sonic-net:master Feb 28, 2021
@daall daall deleted the openconfig_update branch February 28, 2021 23:02
@daall daall mentioned this pull request Feb 28, 2021
Merged
yxieca pushed a commit that referenced this pull request Mar 4, 2021
@daall @yxieca
[openconfig_acl] Add SONiC ACL extension to open config ACL model (#6896
ea12bb3 
)

- Add support for VLAN ID match
- Add support for ICMP type/code match

Signed-off-by: Danny Allen <[email protected]>
carl-nokia pushed a commit to carl-nokia/sonic-buildimage that referenced this pull request Aug 7, 2021
@daall
[openconfig_acl] Add SONiC ACL extension to open config ACL model (so…
9859a6b 
…nic-net#6896)

- Add support for VLAN ID match
- Add support for ICMP type/code match

Signed-off-by: Danny Allen <[email protected]>
lolyu pushed a commit to lolyu/sonic-buildimage that referenced this pull request Sep 13, 2021
@daall @yxieca
[openconfig_acl] Add SONiC ACL extension to open config ACL model (so…
ee63425 
…nic-net#6896)

- Add support for VLAN ID match
- Add support for ICMP type/code match

Signed-off-by: Danny Allen <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@qiluo-msft qiluo-msft qiluo-msft approved these changes

@lguohan lguohan Awaiting requested review from lguohan

@arlakshm arlakshm Awaiting requested review from arlakshm

@shi-su shi-su Awaiting requested review from shi-su

@prsunny prsunny Awaiting requested review from prsunny

Assignees

No one assigned

Labels

Included in 202012 Branch Request for 202012 Branch

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@daall @lguohan @qiluo-msft @yxieca