Randy has it spot on. The antispoofing rules prevent you from doing this in Neutron. Clearly a router transmits traffic that isn't from it, and receives traffic that isn't addressed to it - and the port filtering discards them. You can disable them for the entire cloud by judiciously tweaking the Nova config settings, or if you're using the Nicira plugin you'll find it has extensions for modifying firewall behaviour (they could do with porting around, or even becoming core, but at the moment they're Nicira-specific). -- Ian. On 20 December 2013 17:50, Abbass MAROUNI <abbass.marouni at virtualscale.fr>wrote: > Hello, > > Is it true that a traffic from one OpenStack virtual network to another > have to pass by an OpenStack router ? (using an OpenVirtual switch as the > L2 ). > > I'm trying ti use a VM as a router between 2 OpenStack virtual networks > but for some reason I'm not able. > > Appreciate any insights, > > > Best regards, > Abbass > > _______________________________________________ > OpenStack-dev mailing list > OpenStack-dev at lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20131221/3ddfa88e/attachment.html>