[Openstack] How to troubleshoot Security Group rules
vikash.kumar at oneconvergence.com
Fri Jan 20 09:19:44 UTC 2017
Checkout on the bridge connected to tap ports.
On Thu, Jan 19, 2017 at 7:02 PM, Vimal Kumar <vimal7370 at gmail.com> wrote:
> Is the rules implemented in the iptables of the node (I am running
> all-in-one, LinuxBridge setup), or is it implemented in the iptables of a
> separate network namespace?
> On Thu, Jan 19, 2017 at 1:27 PM, Melvin Hillsman <mrhillsman at gmail.com>
>> If you are running an all-in-one/single node deployment, your security
>> groups are implemented via iptables on that node. If you had a multi-node
>> setup, security group rules would show up on the compute hosts.
>> On Thu, Jan 19, 2017 at 12:47 AM, Vimal Kumar <vimal7370 at gmail.com>
>>> How can I troubleshoot issues related to security groups? It is probably
>>> getting implemented via iptables but where? In the host iptables, or inside
>>> network namespace, or inside instance itself? I am running a single-node
>>> I am looking for a way to check whether the rules in my security group
>>> is actually being implemented or not.
>>> Thank you!
>>> Mailing list: http://lists.openstack.org/cgi
>>> Post to : openstack at lists.openstack.org
>>> Unsubscribe : http://lists.openstack.org/cgi
>> Kind regards,
>> Melvin Hillsman
>> Ops Technical Lead
>> OpenStack Innovation Center
>> mrhillsman at gmail.com
>> phone: (210) 312-1267
>> mobile: (210) 413-1659
>> Learner | Ideation | Belief | Responsibility | Command
> Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/
> Post to : openstack at lists.openstack.org
> Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openstack