Adds egress and ingress forward rules for trusted ports
Iptables firewall driver now adds rules for trusted ports to FORWARD
chain in EGRESS and INGRESS directions.
Unfiltered and trusted port rules are too wide. We have to match
traffic against security groups first.
Reviewed: https:/ /review. openstack. org/560075 /git.openstack. org/cgit/ openstack/ neutron/ commit/ ?id=0b8bcc4d741 87d4fdee26f6d57 d72c70809ea70e
Committed: https:/
Submitter: Zuul
Branch: master
commit 0b8bcc4d74187d4 fdee26f6d57d72c 70809ea70e
Author: Nikita Gerasimov <email address hidden>
Date: Tue Apr 10 19:25:39 2018 +0300
Adds egress and ingress forward rules for trusted ports
Iptables firewall driver now adds rules for trusted ports to FORWARD
chain in EGRESS and INGRESS directions.
Unfiltered and trusted port rules are too wide. We have to match
traffic against security groups first.
Change-Id: I61e4dc92669e33 a207adfb72a1692 184884143e1
Closes-Bug: #1762736