You have been subscribed to a public bug:
SG with hybrid-iptables driver uses per port conntrack zones. FWaaS port
security uses per network conntrack zones based on local vlans assigned
by ovs l2 agent. In case both SG iptables-hybrid driver and FWaaS port
security is enabled, there is a posibility of iptables-hybrid and OVS
based FWaaS driver allocating overlapping zone and creating security
holes.
** Affects: neutron
Importance: Undecided
Status: New
--
SG hybrid iptables driver and FWaaS OVS driver create overlapping conntrack
zones
https://bugs.launchpad.net/bugs/1745642
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
--
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to : [email protected]
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help : https://help.launchpad.net/ListHelp
