[Openstack-security] Neutron: ARP responder and L-2 population
Anshul Arora (akarora)
akarora at cisco.com
Mon Jul 20 03:53:25 UTC 2015
Folks,
I've a query related to APR configuration options and/or general OpenStack solution out of the box for DoS attacks.
In the Neutron plugin.ini file, there are two parameters : L2 population and ARP responder. Based on the documentation it's not clear in which "use cases" these parameters are mandatory. For e.g. is it that VLAN/GRE configuration ? or VLAN based implementation? or both? must be configured with ARP responder to prevent broadcast storms?
The confusion kicks in because ARP responder is an optional parameter that is turned off by default.
Thanks,
-Anshul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20150720/7af45c39/attachment.html>
More information about the Openstack-security
mailing list