lxd bridge interferes with tenant networks
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Juju Charms Collection |
New
|
Undecided
|
Unassigned |
Bug Description
Hello,
I have deployed OpenStack using juju with the openstack bundle.
This bundle uses LXD containers. The setup of these LXD containers create a bridge interface for NAT usage for these LXD's.
In my deployment this LXD network is located on 10.0.0.0/24 on all the machines, the neutron-gateway and several nova-compute nodes.
This produces several iptable rules, like postrouting and forwarding for this network.
Now, if i start an kvm instance on one of the compute nodes which has LXD containers running on the host, and i create a tenant network in that same subnet, the instance doesn't work, because its traffic is being altered by the iptable rules.
I don't know if this causes any security issues, but it at least means that tenant networks which will be on that same subnet as the lxd network will fail to work.
For more information please let me know.
affects: | cinder (Juju Charms Collection) → charms |
I believe this is a duplicate of existing bug: https:/ /bugs.launchpad .net/bugs/ 1614364.