ingress DHCP traffic to instances blocked without tenant secgroup rule
Bug #1531967 reported by
Adam Gandelman
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Astara |
Fix Released
|
Critical
|
Mark McClain |
Bug Description
Ingress traffic to tenant VMs from the router appliance is blocked by default by the tenant's security group. This also blocks DHCP traffic, causing tenant VMs failing to get their addresses. Our devstack plugin adds a security group rule [1] to deal with this, but its unrealistic to expect real world users to add these rules just to get a functional network setup. We need to open this traffic up automatically, either via astara-orchestrator or astara-neutron.
[1] https:/
Changed in astara: | |
importance: | Undecided → Critical |
milestone: | none → mitaka-2 |
Changed in astara: | |
assignee: | nobody → Mark McClain (markmcclain) |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/266586
Review: https:/