On 06/05/2014 09:37 AM, Ovirt User wrote: > Thanks livnat, > > but i don't really understand . > > The security group feature defines iptables rules on the note itself. > > About that: how can i define security group rules ? and in a cluster, they > are automatically propagated al all nodes ? >
The security group is configured per VM, the rules are configured by the system on the node the VM is running on. >From the user perspective you need to configure a security group policy and then associate the VM with the relevant policy, there is also a default policy to which all VMs are associated by default. To use this feature you need to use the oVirt-Neutron integration - http://www.ovirt.org/Features/Detailed_OSN_Integration#Security_groups One caveat in this integration is that we did not handle VM migration yet. > > Il giorno 03/giu/2014, alle ore 17:29, Ovirt User <ldrt8...@gmail.com> ha > scritto: > >> Hello Guys, >> >> i'm searching for a simple firewall solution ( deny some ports etc ). >> >> It is possibile configure a firewall in the node ? to protect the vm's ? >> >> Thanks >> Lukas >> >> >> > > _______________________________________________ > Users mailing list > Users@ovirt.org > http://lists.ovirt.org/mailman/listinfo/users > _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users