Default undercloud control plane network violates rfc5737
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Juan Antonio Osorio Robles |
Bug Description
The default control plan is 192.0.2.0/24 which is not supposedto be used, it is only for documentation purposes according to rfc5737:
https:/
"Addresses within the TEST-NET-1, TEST-NET-2, and TEST-NET-3 blocks
SHOULD NOT appear on the public Internet and are used without any
coordination with IANA or an Internet registry [RFC2050]. Network
operators SHOULD add these address blocks to the list of non-
routeable address spaces, and if packet filters are deployed, then
this address block SHOULD be added to packet filters.
These blocks are not for local use, and the filters may be used in
both local and public contexts."
It breaks tools that enforce the filters.
summary: |
- Default undercloud control plan network violates rfc5737 + Default undercloud control plane network violates rfc5737 |
Changed in tripleo: | |
assignee: | nobody → Juan Antonio Osorio Robles (juan-osorio-robles) |
Changed in tripleo: | |
assignee: | Juan Antonio Osorio Robles (juan-osorio-robles) → Ben Nemec (bnemec) |
Changed in tripleo: | |
assignee: | Ben Nemec (bnemec) → Juan Antonio Osorio Robles (juan-osorio-robles) |
Changed in tripleo: | |
importance: | Undecided → High |
Changed in tripleo: | |
status: | In Progress → Fix Released |
Fix proposed to branch: master /review. openstack. org/289221
Review: https:/