Neutron disallows to change default enable_snat value
Bug #1388858 reported by
Cedric Brandily
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Wishlist
|
Cedric Brandily |
Bug Description
Some deployments (private/enterprise clouds) would like to disable snat by default.
For example some enterprise policies disallow snat as it anonymizes/hides source ips and some private clouds don't use snat/nat features.
But it's currently not possible to change enable_snat default value.
A workaround is to allow and enforce neutron users to set enable_snat attribute to False on external_
Changed in neutron: | |
assignee: | nobody → Cedric Brandily (cbrandily) |
status: | New → In Progress |
Changed in neutron: | |
importance: | Undecided → Wishlist |
Changed in neutron: | |
milestone: | none → liberty-1 |
status: | Fix Committed → Fix Released |
Changed in neutron: | |
milestone: | liberty-1 → 7.0.0 |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/130588 /git.openstack. org/cgit/ openstack/ neutron/ commit/ ?id=cf84ec4c104 61bef6dd57b9645 cb902e0c16584f
Committed: https:/
Submitter: Jenkins
Branch: master
commit cf84ec4c10461be f6dd57b9645cb90 2e0c16584f
Author: Cedric Brandily <email address hidden>
Date: Thu Oct 23 17:49:46 2014 +0200
Allow to define enable_snat default value
Currently neutron resets enable_snat attribute to True when enable_snat gateway_ info. But in some deployments enterprise clouds) such behavior is not the expected default floating- ips is not used (at least by default).
is not provided in router external_
(private/
one as snat/nat/
This change defines the option enable_ snat_by_ default which allows
deployers to set enable_snat default value when neutron resets it. The
option default value is True for backward compatibility.
DocImpact fe907a087c1de8c 8144b5d086e
APIImpact
Closes-Bug: #1388858
Change-Id: I455a552230ec89