Hi Operators, There is a discussion going on right now on the openstack-dev mailing list which I think is important for operators to weigh in on. The short summary is that some believe the default security group and rules (which allow only outbound by default, and no inbound) should be changed. Please take a look, and if you have thoughts you'd like to share, post them on openstack-dev http://lists.openstack.org/pipermail/openstack-dev/2016-March/087982.html -- Sean M. Collins