neutron zed security group not applied on node
Hi guys,
I have an issue with neutron not applying on host the rules updates or when a new ip is added on the port. I'm using kolla-ansible to deploy Openstack with openvswitch and the only way I got it working is to switch in globals.yml neutron_legacy_iptables: 'yes' or to 'no' depending on what value I had it before for that host.
[securitygroup] firewall_driver = neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
I checked with: iptables -nL | grep ip
When doesn't work nothing is returned. Switching to neutron_legacy_iptables yes or to, then checked again with the same command and I have output.
I don't see any errors in logs.
Ubuntu 20.04 on host with linux-hwe kernel 5.15.0-79-generic
Do you guys have any ideas on how to fix that ?
--- Ionuț Bîru - Hosterion
participants (1)
-
Ionuț Bîru