On Mon, Oct 27, 2014 at 6:34 AM, Simon Pasquier <spasquier at mirantis.com> wrote: > Hello Itzik, > This has been discussed lately on this ML. Please see > https://bugs.launchpad.net/neutron/+bug/1335375. This is a good example that any create, update, or delete of a SG rule can expose this issue. This bug only mentions delete. I'll update the bug to increase the scope beyond just deletes because it really is the same conntrack issue at the root of the problem. Carl