Creating a firewall group fails on CentOS 7.4. and OS Ocata with fwaas_v2 when using a port of a distributed router.
The validation only accepts "network:router_interface" as "device_owner", but not "network:router_interface_distributed".
The creation of the firewall group itself works, setting a port does not:
# openstack firewall group set --port ff2c03f4-22d9-4d7a-bc7a-9632ba6cd9d8 oh_noes
Failed to set firewall group 'oh_noes': Firewall Group Port ff2c03f4-22d9-4d7a-bc7a-9632ba6cd9d8 is invalid
Neutron server returns request_ids: ['req-8a8a320b-659e-4364-9604-d41e0b04d6ea']
This is bug is probably very similar to #1759773.
Creating a firewall group fails on CentOS 7.4. and OS Ocata with fwaas_v2 when using a port of a distributed router. router_ interface" as "device_owner", but not "network: router_ interface_ distributed" .
The validation only accepts "network:
The creation of the firewall group itself works, setting a port does not:
# openstack firewall group set --port ff2c03f4- 22d9-4d7a- bc7a-9632ba6cd9 d8 oh_noes 22d9-4d7a- bc7a-9632ba6cd9 d8 is invalid 659e-4364- 9604-d41e0b04d6 ea']
Failed to set firewall group 'oh_noes': Firewall Group Port ff2c03f4-
Neutron server returns request_ids: ['req-8a8a320b-
The port in question:
# openstack port show ff2c03f4- 22d9-4d7a- bc7a-9632ba6cd9 d8 -f json address_ pairs": "", dhcp_opts" : "", 09T15:15: 07Z", router_ interface_ distributed" , number" : 9, security_ enabled" : false, '192.168. 133.1', subnet_ id='4d0e4235- a1e8-44c8- 9297-e226a65bed a6'", 22d9-4d7a- bc7a-9632ba6cd9 d8", groups" : "", vnic_type" : "normal", 3e:75:c8: 06", 11ade21982746d6 50c", profile" : "", vif_type" : "distributed", vif_details" : "", host-192- 168-133- 1.vm.environmen t.uf0.de. ', hostname= 'host-192- 168-133- 1', ip_address= '192.168. 133.1'" , 5d6d-4539- 883b-117de552d2 91", b104-480c- b347-4b5f66e9bd 2b", 09T15:15: 00Z", host_id" : ""
{
"allowed_
"extra_
"updated_at": "2018-04-
"device_owner": "network:
"revision_
"port_
"fixed_ips": "ip_address=
"id": "ff2c03f4-
"security_
"option_value": null,
"binding_
"option_name": null,
"description": "",
"qos_policy_id": null,
"mac_address": "fa:16:
"project_id": "4c7effe5f22b4d
"status": "ACTIVE",
"binding_
"binding_
"binding_
"dns_assignment": "fqdn='
"ip_address": null,
"device_id": "f305a116-
"name": "",
"admin_state_up": "UP",
"network_id": "25b641fb-
"dns_name": "",
"created_at": "2018-04-
"subnet_id": null,
"binding_
}