Comment 1 for bug 1252620
Revision history for this message
| Akihiro Motoki (amotoki) wrote Re: security groups don't block unwanted traffic | #1 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
e3ace39
(Get the code!)
I think you use ML2 with OVS agent.
To maek Neutron Security group with OVS agent work we need the hybrid OVS bridge VIF driver, but recently the hybrid driver has been removed from Nova. As a result, no linux bridge is created for VIF and iptables rule is not enforced to traffic transferred on OVS bridge.
To address this issue, we need to address bug 1112912 ASAP.