undercloud masquerading hardcoded to eth0
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
Medium
|
Harald Jensås |
Bug Description
Masquerading is hardcoded to eth0.
a) This will not work on hardware that uses predictable network interface names.
b) Why is the entry in L13 even there?
Any traffic we want to be masqueraded will be masqueraded in BOOTSTACK_MASQ_NEW? (ref L12 below)
File: instack-
7 # Build the chain we want.
8 {{#masquerade_
9 NETWORK={{.}}
10 # Workaround iptables not permitting two -d parameters in one call.
11 iptables -w -t nat -A BOOTSTACK_MASQ_NEW -s $NETWORK -d 192.168.122.1 -j RETURN
12 iptables -w -t nat -A BOOTSTACK_MASQ_NEW -s $NETWORK ! -d $NETWORK -j MASQUERADE
13 iptables -w -t nat -A POSTROUTING -s $NETWORK -o eth0 -j MASQUERADE
14 {{/masquerade_
Changed in tripleo: | |
importance: | Undecided → Medium |
milestone: | none → pike-2 |
Fix proposed to branch: master /review. openstack. org/464339
Review: https:/