[Yahoo-eng-team] [Bug 1799885] [NEW] [FWaaS]Firewall rule for fip's DNAT traffic, destination address should be this fip

Public bug reported: Bug description: When we write a firewall group rule which limit fip's DNAT traffic, for example we want to accept the traffic into a VM binding a fip, the rule's destination address should be VM's intranet IP address (not fip IP address) currently. However if we associate

[Yahoo-eng-team] [Bug 1798713] [NEW] [fwaas]wrong judgment in _is_supported_by_fw_l2_driver method

Public bug reported: Bug description: the scenario:security group is enabled and its firewall_driver = openvswitch, fwaas is enabled and its firewall_l2_driver = noop(default). If I create a new vm, default FWG will be bound on this vm's port automatically. However, firewall_l2_driver = noop

[Yahoo-eng-team] [Bug 1798577] [NEW] [FWaas-DVR]wrong port name in iptables rules

Public bug reported: Bug description: In DVR model, when we bind a FWG on a gateway port, the port names(sg port and rfp port) in iptables rules are wrong. Steps: 1.create a firewall group named fw 2.create a router(id:0cbd237f-358a-4c27-8047-c50e1f7201e7),add a subnet's gateway