[Openstack] Default rules for the 'default' security group

Day, Phil philip.day at hp.com
Wed Aug 29 13:35:55 UTC 2012


The HPCS portal does this for you via the Nova API when the account is created – we haven’t implemented it as a specific Nova feature.

From: openstack-bounces+philip.day=hp.com at lists.launchpad.net [mailto:openstack-bounces+philip.day=hp.com at lists.launchpad.net] On Behalf Of Shake Chen
Sent: 24 August 2012 01:54
To: Gabriel Hurley
Cc: openstack at lists.launchpad.net
Subject: Re: [Openstack] Default rules for the 'default' security group

Now in HPcloud, have this feature.

all the new user, the default security group would open 80,22, 443 and icmp.

On Fri, Aug 24, 2012 at 2:02 AM, Gabriel Hurley <Gabriel.Hurley at nebula.com<mailto:Gabriel.Hurley at nebula.com>> wrote:
I traced this through the code at one point looking for the same thing. As it stands, right now there is *not* a mechanism for customizing the default security group’s rules. It’s created programmatically the first time the rules for a project are retrieved with no hook to add or change its characteristics.

I’d love to see this be possible, but it’s definitely a feature request.


-          Gabriel

From: openstack-bounces+gabriel.hurley=nebula.com at lists.launchpad.net<mailto:nebula.com at lists.launchpad.net> [mailto:openstack-bounces+gabriel.hurley<mailto:openstack-bounces%2Bgabriel.hurley>=nebula.com at lists.launchpad.net<mailto:nebula.com at lists.launchpad.net>] On Behalf Of Boris-Michel Deschenes
Sent: Thursday, August 23, 2012 7:59 AM
To: Yufang Zhang; openstack at lists.launchpad.net<mailto:openstack at lists.launchpad.net>
Subject: Re: [Openstack] Default rules for the 'default' security group

I’m very interested in this, we run essex and have a very bad workaround for this currently, but it would be great to be able to do this (set default rules for the default security group).

Boris

De : openstack-bounces+boris-michel.deschenes=ubisoft.com at lists.launchpad.net<mailto:openstack-bounces+boris-michel.deschenes=ubisoft.com at lists.launchpad.net> [mailto:openstack-bounces+boris-michel.deschenes=ubisoft.com at lists.launchpad.net]<mailto:[mailto:openstack-bounces+boris-michel.deschenes=ubisoft.com at lists.launchpad.net]> De la part de Yufang Zhang
Envoyé : 23 août 2012 08:43
À : openstack at lists.launchpad.net<mailto:openstack at lists.launchpad.net>
Objet : [Openstack] Default rules for the 'default' security group

Hi all,

Could I ask how to set the default rules for the 'default' security group for all the users in openstack? Currently, the 'default' security group has no rule by default, thus newly created instances could only be accessed by instances from the same group.

Is there any method to set default rules(such as ssh or icmp) for the 'default' security group for all users in openstack, so that I don't have to remind the new users to modify security group setting the fist time they logged into openstack and create instances?  I have ever tried HP could which is built on openstack, they permit ssh or ping to the instances in the 'default' security group.

Best Regards.

Yufang

_______________________________________________
Mailing list: https://launchpad.net/~openstack<https://launchpad.net/%7Eopenstack>
Post to     : openstack at lists.launchpad.net<mailto:openstack at lists.launchpad.net>
Unsubscribe : https://launchpad.net/~openstack<https://launchpad.net/%7Eopenstack>
More help   : https://help.launchpad.net/ListHelp



--
Shake Chen

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20120829/70351ab2/attachment.html>


More information about the Openstack mailing list