Public bug reported:
Bug description:
When we write a firewall group rule which limit fip's DNAT traffic, for example
we want to accept the traffic into a VM binding a fip, the rule's destination
address should be VM's intranet IP address (not fip IP address) currently.
However if we associate
Public bug reported:
Bug description:
the scenario:security group is enabled and its firewall_driver = openvswitch,
fwaas is enabled and its firewall_l2_driver = noop(default).
If I create a new vm, default FWG will be bound on this vm's port
automatically. However, firewall_l2_driver = noop
Public bug reported:
Bug description:
In DVR model, when we bind a FWG on a gateway port, the port names(sg port and
rfp port) in iptables rules are wrong.
Steps:
1.create a firewall group named fw
2.create a router(id:0cbd237f-358a-4c27-8047-c50e1f7201e7),add a subnet's
gateway
3 matches
Mail list logo