OpenStack-Ansible

  1. Bug #1482756
  2. Comment #16

Comment 16 for bug 1482756

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to openstack-ansible (juno)

Reviewed: https://review.openstack.org/227963
Committed: https://git.openstack.org/cgit/openstack/openstack-ansible/commit/?id=a9a7485dcafce2e3fe14008a46ede41c70799ca1
Submitter: Jenkins
Branch: juno

commit a9a7485dcafce2e3fe14008a46ede41c70799ca1
Author: Jesse Pretorius <email address hidden>
Date: Fri Sep 25 17:56:12 2015 +0100

    Add ebtables to neutron agent configuration

    Neutron now uses ebtables as an extra security layer for ARP spoof filtering.
    This patch adds the ebtables package and rootwrap to the neutron role to
    ensure that the agent is able to use this subsystem. Without it the networking
    from the instances to the L3 router will fail.

    The neutron agent prevent_arp_spoofing conf option is configurable, but is set
    with the default value of False to match upstream and also to prevent a change
    in behaviour from previous Juno deployments.

    Co-Authored-By: Evan Callicoat <email address hidden>
    Closes-Bug: #1482756
    Change-Id: Ibc960564a3acfbb10cfbc3cfe0ad60d3366d2443