Hi guys,
I have an issue with neutron not applying on host the rules updates or when a new ip is added on the port.
I'm using kolla-ansible to deploy Openstack with openvswitch and the only way I got it working is to switch in globals.yml neutron_legacy_iptables: 'yes' or to 'no' depending on what value I had it before for that host.
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
I checked with:
iptables -nL | grep ip
When doesn't work nothing is returned.
Switching to neutron_legacy_iptables yes or to, then checked again with the same command and I have output.
I don't see any errors in logs.
Ubuntu 20.04 on host with linux-hwe kernel 5.15.0-79-generic
Do you guys have any ideas on how to fix that ?