[Openstack] Network issue with a service entry sitting on top of a interface
Brian Haley
brian.haley at hp.com
Fri Jan 31 17:27:22 UTC 2014
On 01/31/2014 11:48 AM, Howard Luckenbaugh wrote:
> Is there a way around this?
Putting back the mailing list...
You can create a neutron port without security enabled, then pass it to nova
when booting:
$ neutron port-create $NETWORK_ID --port_security_enabled False --name $PORT_ID1
$ nova boot [...] --nic port-id=$PORT_ID1 vm
-Brian
> From: Brian Haley <brian.haley at hp.com>
> To: Howard Luckenbaugh/Raleigh/IBM at IBMUS, openstack at lists.openstack.org,
> Date: 01/28/2014 07:38 PM
> Subject: Re: [Openstack] Network issue with a service entry sitting on top of a
> interface
> --------------------------------------------------------------------------------
>
>
>
> On 01/28/2014 04:22 PM, Howard Luckenbaugh wrote:
>> I am having a issue with getting a second IP sitting on top of a VM eth0 to
>> work. Do I have to allocate this IP in SCO first before this will work. It is in
>> the same network as the VM IP which is working fine.
>
> There's anti-spoofing rules added to tap devices, it won't let anything but your
> allocated MAC and IP out. Check the iptables rules on the compute node and
> you'll probably see the drop counts increasing for that port.
>
> -Brian
>
>
More information about the Openstack
mailing list