neutron

The firewall group is ACTIVE without associcate with a router or any firewall policies.

Bug #2047325 reported by dongdong
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
neutron
In Progress
Medium
dongdong

Bug Description

The firewall group should be in an INACTIVE state when not associated with a router and firewall policies, but there may be instances where it is in an ACTIVE state.
# openstack firewall group show 04bae29d-aad5-4e1d-8685-083a1592a79a
+-------------------+--------------------------------------+
| Field | Value |
+-------------------+--------------------------------------+
| Description | |
| Egress Policy ID | None |
| ID | 04bae29d-aad5-4e1d-8685-083a1592a79a |
| Ingress Policy ID | None |
| Name | ddd2 |
| Ports | [] |
| Project | f16038aec2be4af39242cb8739a29039 |
| Shared | False |
| State | UP |
| Status | ACTIVE |
| project_id | f16038aec2be4af39242cb8739a29039 |
+-------------------+--------------------------------------+

Recurrence process:
1. Create firewall group;
2. Associate with a router;
3. Update the router;
4. Check the firewall status is already ACTIVE;
5. Disassociate from the router, and the firewall status remains ACTIVE.

Version:
OpenStack: Zed
OS: CentOS 9 stream

Tags: fwaas
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Related fix proposed to neutron-fwaas (master)

Related fix proposed to branch: master
Review: https://review.opendev.org/c/openstack/neutron-fwaas/+/904317

Bernard Cafarelli (bcafarel)
Changed in neutron:
assignee: nobody → dongdong (dudd)
status: New → In Progress
importance: Undecided → Medium
tags: added: fwaas
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.