OpenStack Heat

Bug #1681769
Comment #4

Comment 4 for bug 1681769

Revision history for this message

Volodymyr Litovka (doka.ua) wrote on 2017-04-11:

Hi Rabi,

to be more precise - I create stack with the following configuration:

  e-secgroup:
    type: OS::Neutron::SecurityGroup
    properties:
      name: SSH_ICMP
      rules:
        - direction: ingress
# - protocol: tcp
# remote_ip_prefix: 0.0.0.0/0
# port_range_min: 22
# port_range_max: 22
        - protocol: icmp
          remote_ip_prefix: 0.0.0.0/0

  node1-wan:
    type: OS::Neutron::Port
    properties:
      name: jadm-node1-wan
      network: e-net
      port_security_enabled: True
      security_groups: [ default, { get_resource: e-secgroup } ]

and, then, in order to allow SSH (port 22) in this security group, just uncomment commented rows in e-secgroup statement (and nothing else!) launch update and get:

Resource UPDATE failed: BadRequest: resources.e-secgroup: Invalid input for description. Reason: 'None' is not a valid string. Neutron server returns request_ids: ['req-287db7f6-06be-4bc8-a11b-94be203c67da']