memcached charm doesn't open ufw on the right address
Bug #1605311 reported by
Alvaro Uria
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
memcached (Juju Charms Collection) |
Fix Released
|
Medium
|
Alex Kavanagh |
Bug Description
When relating any service (ie: nova-cloud-
Other charms such as mysql and rabbitmq-server allow configuration of "access-network" parameter to force communication through specified network (ie: other than private-address).
In my specific case, private-address network is 1G while I'd like to specify a 10G network available.
Thank you.
Related branches
lp:~ajkavanagh/charms/trusty/memcached/add-spaces-support
- David Ames (community): Approve
-
Diff: 1570 lines (+842/-136)16 files modifiedREADME.md (+23/-0)
hooks/charmhelpers/contrib/network/ip.py (+122/-28)
hooks/charmhelpers/contrib/network/ovs/__init__.py (+66/-1)
hooks/charmhelpers/core/hookenv.py (+47/-0)
hooks/charmhelpers/core/host.py (+225/-37)
hooks/charmhelpers/core/host_factory/centos.py (+16/-0)
hooks/charmhelpers/core/host_factory/ubuntu.py (+32/-0)
hooks/charmhelpers/core/kernel_factory/ubuntu.py (+1/-1)
hooks/charmhelpers/core/strutils.py (+53/-0)
hooks/charmhelpers/fetch/__init__.py (+1/-0)
hooks/charmhelpers/fetch/snap.py (+122/-0)
hooks/charmhelpers/fetch/ubuntu.py (+87/-36)
hooks/charmhelpers/osplatform.py (+6/-0)
hooks/memcached_hooks.py (+20/-13)
hooks/replication.py (+6/-5)
unit_tests/test_memcached_hooks.py (+15/-15)
Changed in memcached (Juju Charms Collection): | |
status: | New → Triaged |
importance: | Undecided → Medium |
Changed in memcached (Juju Charms Collection): | |
status: | In Progress → Fix Committed |
summary: |
- add access-network option + memcached doesn't open ufw on the right address |
summary: |
- memcached doesn't open ufw on the right address + memcached charm doesn't open ufw on the right address |
To post a comment you must log in.
access-network or binding is really needed. In multi-network case, memcached charm setup ufw rules with unit private address. In this case, memcached only has connectivity to 192.168.123.X. nova-cloud- controller unit with 10.201.100.Y never be allowed to access to the memcached.
# ufw status verbose
Status: active
Logging: on (low)
Default: allow (incoming), allow (outgoing), deny (routed)
New profiles: skip
To Action From
-- ------ ----
11211/tcp ALLOW IN 192.168.123.X
11211/tcp ALLOW IN 192.168.123.X
11211/tcp ALLOW IN 10.201.100.Y
11211/tcp ALLOW IN 10.201.100.Y
11211/tcp ALLOW IN 10.201.100.Y
22 ALLOW IN Anywhere
11211/tcp DENY IN Anywhere
22 (v6) ALLOW IN Anywhere (v6)
11211/tcp (v6) DENY IN Anywhere (v6)