(A)Summary : Firewall rules in Openstack does not support scheduling
(B)Further information :
(B.1)High level description: Currently Openstack firewall rules do not allow scheduling. When a router is associated with a firewall, the rules making the firewall are active for the whole duration till the rule is a part of the firewall.
However, users may require a scheduled action in the firewall, so that a single rule can act upon the firewall packets for a specific time period.After the time period expires, the rule can change its behavior on the same packets.
(B.2)Pre-conditions: The following requirement does not have an explicit pre-conditon.
Note:
- This is applicable for all tenants
(B.3)Step-by-step reproduction steps: NA, as this feature does not currently exist in Openstack.
(B.4)Expected output: User should be able to create a Firewall rule which can be scheduled, to provide extended support to the user.
(B.5)Actual output: Such a facility in the firewall rule is not available.
(B.6)Version:
- OpenStack version (Specific stable branch, or git hash if from trunk): Tag ID : c1310f32fbb6dfa958bb31152ee5b492b177c6cb
- Linux distro, kernel.: Ubuntu 14.04
- DevStack or other _deployment_ mechanism? : Devstack
- Environment: Neutron with Firewall Extensions, on a single node machine.
However, the above requirement is independent of the environment.
(C)Perceived severity: Medium
Fix proposed to branch: master /review. openstack. org/237832
Review: https:/