[Openstack] How to troubleshoot Security Group rules
Vikash Kumar
vikash.kumar at oneconvergence.com
Fri Jan 20 09:19:44 UTC 2017
Checkout on the bridge connected to tap ports.
On Thu, Jan 19, 2017 at 7:02 PM, Vimal Kumar <vimal7370 at gmail.com> wrote:
> Hi,
>
> Is the rules implemented in the iptables of the node (I am running
> all-in-one, LinuxBridge setup), or is it implemented in the iptables of a
> separate network namespace?
>
> On Thu, Jan 19, 2017 at 1:27 PM, Melvin Hillsman <mrhillsman at gmail.com>
> wrote:
>
>> If you are running an all-in-one/single node deployment, your security
>> groups are implemented via iptables on that node. If you had a multi-node
>> setup, security group rules would show up on the compute hosts.
>>
>> On Thu, Jan 19, 2017 at 12:47 AM, Vimal Kumar <vimal7370 at gmail.com>
>> wrote:
>>
>>> Hi!
>>>
>>> How can I troubleshoot issues related to security groups? It is probably
>>> getting implemented via iptables but where? In the host iptables, or inside
>>> network namespace, or inside instance itself? I am running a single-node
>>> Newton.
>>>
>>> I am looking for a way to check whether the rules in my security group
>>> is actually being implemented or not.
>>>
>>> Thank you!
>>>
>>> Regards,
>>>
>>> Vimal
>>>
>>> _______________________________________________
>>> Mailing list: http://lists.openstack.org/cgi
>>> -bin/mailman/listinfo/openstack
>>> Post to : openstack at lists.openstack.org
>>> Unsubscribe : http://lists.openstack.org/cgi
>>> -bin/mailman/listinfo/openstack
>>>
>>>
>>
>>
>> --
>> Kind regards,
>>
>> Melvin Hillsman
>> Ops Technical Lead
>> OpenStack Innovation Center
>>
>> mrhillsman at gmail.com
>> phone: (210) 312-1267
>> mobile: (210) 413-1659
>> http://osic.org
>>
>> Learner | Ideation | Belief | Responsibility | Command
>>
>
>
> _______________________________________________
> Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/
> openstack
> Post to : openstack at lists.openstack.org
> Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/
> openstack
>
>
--
Regards,
Vikash
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20170120/a1d8a056/attachment.html>
More information about the Openstack
mailing list