Not able to ping between VMs when creating logging with --resource-type security_group
Bug #1787106 reported by
Vu Cong Tuan
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Undecided
|
Nguyen Phuong An |
Bug Description
Environment setup:
VM1 <=> (Subnet1) Router1 (Subnet2) <=> VM2
1. Create Subnet1, Subnet2
2. Attach Subnet1 and Subnet2 to Router1
3. Create log_resource with event=ALL
openstack network log create --resource-type security_group --enable --event ALL Log_all_
4. Create VM1 under Subnet1, create VM2 under Subnet2 (default security group)
5. Add ALLOW ICMP rule to default security group
6. Login to VM1, ping to VM2
Expected result: be able to ping to VM
Actual result: not able to ping to VM2
Please note that:
We can ping from Router1 to VM1 and VM2.
But when "logging to VM1", we cannot ping to VM2 and Router1.
Changed in neutron: | |
assignee: | nobody → Nguyen Phuong An (annp) |
Changed in neutron: | |
status: | New → In Progress |
tags: | added: queens-backport-potential |
tags: | added: neutron-proactive-backport-potential |
tags: | removed: in-stable-rocky neutron-proactive-backport-potential queens-backport-potential |
tags: | added: in-stable-rocky |
To post a comment you must log in.
Hello Nguyen Phuong An,
I would like to rise one question - does it work (ping from VM1 to VM2 and vice versa) when there is no network login created, but only default security group is updated, with ALLOW ICMP?
Paweł