[openstack-dev] [Neutron] FWaaS/Security groups Not blocking ongoing traffic

Carl Baldwin carl at ecbaldwin.net
Mon Oct 27 15:27:57 UTC 2014


On Mon, Oct 27, 2014 at 6:34 AM, Simon Pasquier <spasquier at mirantis.com> wrote:
> Hello Itzik,
> This has been discussed lately on this ML. Please see
> https://bugs.launchpad.net/neutron/+bug/1335375.

This is a good example that any create, update, or delete of a SG rule
can expose this issue.  This bug only mentions delete.  I'll update
the bug to increase the scope beyond just deletes because it really is
the same conntrack issue at the root of the problem.

Carl



More information about the OpenStack-dev mailing list