sg rules are sometimes not applied
Bug #1736674 reported by
Dr. Jens Harbott
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Security Advisory |
Won't Fix
|
Undecided
|
Unassigned | ||
neutron |
Fix Released
|
High
|
Slawek Kaplonski |
Bug Description
Failure of negative test in gate:
Reproducing locally with a debug patch, I see that iptables_manager first applies the correct rules and then removes them again immediately after that, see http://
Steps to reproduce (taken from neutron_
- create two security groups
- add ssh access to first, icmp access to second one
- create an instance with these two security groups applied
- run iptables-save and discover no rules applied to the instance
information type: | Private Security → Public Security |
tags: | added: needs-attention |
tags: | added: gate-failure |
Changed in neutron: | |
status: | New → Confirmed |
importance: | Undecided → High |
Changed in neutron: | |
assignee: | nobody → Miguel Lavalle (minsel) |
Changed in neutron: | |
assignee: | Miguel Lavalle (minsel) → Slawek Kaplonski (slaweq) |
tags: | added: neutron-proactive-backport-potential |
tags: | removed: neutron-proactive-backport-potential |
To post a comment you must log in.
Related fix proposed to branch: master /review. openstack. org/525934
Review: https:/