[openstack-dev] [Openstack][Neutron]Why we use secuirity group which only support dispatching whiltelist rules?
Ihar Hrachyshka
ihrachys at redhat.com
Mon Apr 24 03:37:52 UTC 2017
All traffic is denied by default. OpenStack security groups API is
modeled to reflect what AWS does. You may find your needs better
served by fwaas plugin for neutron that is not constrained by AWS
compatibility.
Ihar
On Sun, Apr 23, 2017 at 8:33 PM, 田明明 <tianming20052004 at 163.com> wrote:
> Can we add an "action" to security group rule api, so that we could dispatch
> rules with "deny" action? Until now, security group only supports add
> white-list rules but this couldn't satisfy many people's needs.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> __________________________________________________________________________
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
More information about the OpenStack-dev
mailing list