External network doesn't need to be shared
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Low
|
Yair Fried |
Bug Description
Please remove the "--shared" tag from the external network.
You can't creating an external network that is invisible to other tenants because limiting "external" network to a single tenant, doesn't make much sense, as VMs in this tenant can already connect directly to the network without the need for a router or floating IPs.
By marking a network as external you are already sharing it among all other tenants to be used as default GW and a source for floating IPs.
By Marking a network as "shared" you are allowing other tenants to connect VMs (and not router GWs) to the network.
Following the doc, marking an external network as "shared" would allow VMs of all tenants to connect to a network as well as pull floating ips from it (via router GW). While this is possible in Neutron, it is also redundant, as with the case above - There isn't much sense in pulling a floating IP from a network that you can connect to directly.
-------
Built: 2014-12-11T19:42:53 00:00
git SHA: 4a4e294bccb1dbe
URL: http://
source File: file:/home/
xml:id: neutron_
Fix proposed to branch: master /review. openstack. org/143845
Review: https:/