Fuel for OpenStack

The firewall rules are spread around all puppet manifests and should be put into the openstack::firewall

Bug #1429077 reported by Bogdan Dobrelya on 2015-03-06

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Fuel for OpenStack	Fix Released	Low	Stanislaw Bogatkin	Fuel for OpenStack 8.0
7.0.x	Won't Fix	Low	Fuel Library (Deprecated)	Fuel for OpenStack 7.0
8.0.x	Fix Released	Low	Stanislaw Bogatkin	Fuel for OpenStack 8.0

Bug Description

And the list actually should be only:
https://github.com/stackforge/fuel-library/blob/master/deployment/puppet/openstack/manifests/firewall.pp

https://github.com/stackforge/fuel-library/blob/master/deployment/puppet/cobbler/manifests/iptables.pp

https://github.com/stackforge/fuel-library/blob/master/deployment/puppet/nailgun/manifests/host.pp (?)
https://github.com/stackforge/fuel-library/blob/master/deployment/puppet/nailgun/manifests/iptables.pp

Also note, that openstack/manifests/firewall.pp should contain if {} stanzas for different types of deployment (ceph or swift, for example. Nova or neutron, etc.) in order to not open unused ports.

See original description

Tags:

Bogdan Dobrelya (bogdando) on 2015-03-06

Changed in fuel:
milestone:	none → 6.1
importance:	Undecided → Low
assignee:	nobody → Fuel Library Team (fuel-library)
status:	New → Triaged
description:	updated
tags:	added: low
tags:	added: low-hanging-fruit removed: low

Stanislaw Bogatkin (sbogatkin) on 2015-04-09

Changed in fuel:
status:	Triaged → Won't Fix

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-09-25: Fix proposed to fuel-library (master)

Fix proposed to branch: master
Review: https://review.openstack.org/227809

Changed in fuel:
status:	Won't Fix → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-09-28: Fix merged to fuel-library (master)

Reviewed: https://review.openstack.org/227809
Committed: https://git.openstack.org/cgit/stackforge/fuel-library/commit/?id=c1553933e0aea410cd63b92f63b778049d2e68a6
Submitter: Jenkins
Branch: master

commit c1553933e0aea410cd63b92f63b778049d2e68a6
Author: Stanislaw Bogatkin <email address hidden>
Date: Fri Sep 25 15:00:15 2015 +0300

Move some firewall rules

Place rules for mongo and heat to more appropriate places.

Change-Id: I987564e68c42b87ac16aecec2404a365e7fec85f
Closes-Bug: #1429077

Changed in fuel:
status:	In Progress → Fix Committed

Dmitry Pyzhov (dpyzhov) on 2015-10-22

tags:

added: area-library

Dmitry Pyzhov (dpyzhov) on 2015-11-30

Changed in fuel:
milestone:	6.1 → 8.0

Revision history for this message

Tatyanka (tatyana-leontovich) wrote on 2016-02-16:

verified on 529

Changed in fuel:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.