neutron

  1. Bug #1580377
  2. Comment #14

Comment 14 for bug 1580377

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (master)

Reviewed: https://review.openstack.org/352440
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=9168dbf93d70ec4df6ab29d2b300497fef401682
Submitter: Jenkins
Branch: master

commit 9168dbf93d70ec4df6ab29d2b300497fef401682
Author: venkata anil <email address hidden>
Date: Mon Aug 8 14:11:11 2016 +0000

    Delete conntrack when remote ipset member removed

    Through [1] ipset members are updated in update_security_group_members
    instead of updating during firewall apply. In the same way, we will
    delete conntrack entries immediately after deleting remote ipset
    members(in update_security_group_members) instead of deleting them after
    firewall apply.

    As explained in [2], this change partially fixes bug #1580377 i.e it
    deletes conntrack entries on remote hosts for a removed port.

    [1] https://review.openstack.org/#/c/347068/
    [2] https://bugs.launchpad.net/neutron/+bug/1580377/comments/13

    Co-Authored-By:shihanzhang <email address hidden>
    Partial-Bug: #1580377
    Change-Id: Iea3344a24e2a068b794c44796b4c945432379c13