Hi team,
Have a nice day.
Since Security Group Logging was merged in Queens cycle, we've just found
a critical bug which has been addressed in [1] and [2]. These patches is
already in good shape now (got +2 from core reviewers).
So, could you please help to review and bless these patches to be me
>
>On Wed, 2014-04-09 at 00:02 +0100, Salvatore Orlando wrote:
>> Auditing has been discussed for the firewall extension.
>> However, it is reasonable to expect some form of auditing for security
>> group rules as well.
>>
>>
>> To the best of my knowledge there has never been an explicit decisio
On Wed, 2014-04-09 at 00:02 +0100, Salvatore Orlando wrote:
> Auditing has been discussed for the firewall extension.
> However, it is reasonable to expect some form of auditing for security
> group rules as well.
>
>
> To the best of my knowledge there has never been an explicit decision
> to no
Auditing has been discussed for the firewall extension.
However, it is reasonable to expect some form of auditing for security
group rules as well.
To the best of my knowledge there has never been an explicit decision to
not support logging.
However, my guess here is that we might be better off wi
Are there any blueprints or discussion around logging the actions of iptables
rules that are generated from security groups?
Typically a firewall produces copious logs. As far as I can tell, Neutron
security groups permit or deny traffic but don't provide any record at all of
what happened. Obv