OpenContrail

Port with no security group is not assocaited to the sg __no_rule__

Bug #1591944 reported by Édouard Thuleau on 2016-06-13

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Juniper Openstack	Status tracked in Trunk
Trunk	Fix Committed	Undecided	Unassigned	Juniper Openstack r3.1.0.0-fcs
OpenContrail	New	Undecided	Unassigned

Bug Description

With master branch and the v3 plugin, if a port is created through neutron client with --no-security-groups flag, the port should reference the security group defined for that and named '__no_rule__' that results to allow all sorts of packet to pass as we expect all dropped.

Tags:

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-06-13: [Review update] master

Review in progress for https://review.opencontrail.org/21110
Submitter: ?douard Thuleau (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2016-06-16: A change has been merged

Reviewed: https://review.opencontrail.org/21110
Committed: http://github.org/Juniper/contrail-neutron-plugin/commit/79f4242a41204868be42e3f546309667e6809fbe
Submitter: Zuul
Branch: master

commit 79f4242a41204868be42e3f546309667e6809fbe
Author: Édouard Thuleau <email address hidden>
Date: Mon Jun 13 14:57:43 2016 +0200

Set the internal-only security group

Set the internal-only security group '__no_rule__' to ports where there
is no security group set.

Change-Id: I12831fe762b7460ac188109ae4d85bcb38c2f760
Closes-Bug: #1591944

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.