juju-core

juju expose should allow ip/port restrictions

Bug #1475565 reported by Simon Davy on 2015-07-17

This bug report is a duplicate of: Bug #1287658: Fine grain secgroup rules. Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	juju-core	Triaged	Medium	Unassigned

Bug Description

Juju expose is not granular enough.

I want to be able to expose haproxy port 10000 to 10.172.0.0/16, to allow vpn users to access the monitoring page.

Using juju expose would a) expose all open ports, not 10000, and b) allow any source IP

I currently have to script this manually, in a provider specific way. I need to find the security group that juju has created for that service and manually add the rule.

What I would like is something like: juju expose --ports=10000 --from=10.172.0.0/16

Tags:

Revision history for this message

Curtis Hovey (sinzui) wrote on 2015-07-17:

This issue overlaps with bug 1401358

tags:	added: expose
Changed in juju-core:
status:	New → Triaged
importance:	Undecided → Medium
tags:	added: improvement

Revision history for this message

Simon Davy (bloodearnest) wrote on 2015-07-17:

Basically the same issue as bug 1401358, which was filed by my colleague, so have marked as dup.

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #1287658 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.