Comment 1 for bug 1618117

I tried to reproduce the bug in mitaka version

steps:

1.launched two vm's(10.125.155.3,10.119.16.3) on two different networks(net1:10.125.155.0/24 and net2:10.119.16.0/24)
2.created a router with two interfaces for net1 and net2.
3.created security groups with ssh and ICMP(ping) rule and tagged this to vm's.
4.created a firewall with TCP deny firewall rule and added it to the router.
5.from vm1 console tried to ssh/ping to vm2

Analysis:

we have tried with another scenario i.e,TCP allowrule for blocking connection establishment But,it is not getting blocked
We can not block only ssh as we have added TCP deny rule
Both ssh and ping getting blocked