1. Proposed title of this feature request

Port mirroring in OVN Kubernetes

2. What is the nature and description of the request?

Customers are looking for a way to read an analyze network communication of applications running in their clusters. Typically these applications would be a VM with a direct connection to a VLAN. This traffic would be mirrored to "consumer" Pods.

OVN Kubernetes localnet (and OVN user-defined and secondary networks in general) should be extended with support for port-mirroring.

Ideally, the consumer of the mirrored traffic would be given traffic of all VMs from accross the cluster. However, customers seem to be ok with an option that there would be one consumer per each node.

RHV implementation of this feature: https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/technical_reference/port_mirroring

3. Why does the customer need this? (List the business requirements here)

As a telecommunication provider, I need to be able to monitor and record traffic flowing between applications running on my cluster, so I can analyze the quality and use the data as an evidence in court cases.

4. List any affected packages or components.

OVN Kubernetes