Add comments to iptables rules to help debugging
Bug #1378562 reported by
OpenStack Infra
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Wishlist
|
John Joyce |
Bug Description
https:/
commit ea202faec972d55
Author: Kevin Benton <email address hidden>
Date: Fri May 9 21:54:39 2014 -0700
Add comments to iptables rules to help debugging
Adds comments to some of the iptables rules generated
by neutron to assist with debugging.
DocImpact
Partial-Bug: #1265493
Change-Id: I7d9e37b9a43589
Changed in openstack-manuals: | |
assignee: | nobody → Loic Dachary (dachary) |
Changed in openstack-manuals: | |
assignee: | Loic Dachary (dachary) → nobody |
Changed in openstack-manuals: | |
assignee: | nobody → John Joyce (joycej) |
Changed in openstack-manuals: | |
status: | Triaged → In Progress |
To post a comment you must log in.
20
SNAT_OUT = 'Perform source NAT on outgoing traffic.' 21
UNMATCH_DROP = 'Default drop rule for unmatched traffic.' 22
VM_INT_SG = 'Direct traffic from the VM interface to the security group chain.' 23
SG_TO_VM_SG = 'Jump to the VM specific chain.' 24
INPUT_TO_SG = 'Direct incoming traffic from VM to the security group chain.' 25
PAIR_ALLOW = 'Allow traffic from defined IP/MAC pairs.' 26
PAIR_DROP = 'Drop traffic without an IP/MAC allow rule.' 27
DHCP_CLIENT = 'Allow DHCP client traffic.' 28
DHCP_SPOOF = 'Prevent DHCP Spoofing by VM.' 29
UNMATCHED = 'Send unmatched traffic to the fallback chain.' 30
STATELESS_DROP = 'Drop packets that are not associated with a state.' 31
ALLOW_ASSOC = ('Direct packets associated with a known session to the RETURN ' 32
'chain.') 33
IPV6_RA_ALLOW = 'Allow IPv6 ICMP traffic to allow RA packets.'