Uploaded image for project: 'netvirt'
  1. netvirt
  2. NETVIRT-1048

Permit ALL ICMP with remote-Security Group fails

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Do
    • Icon: Medium Medium
    • Oxygen-SR2
    • None
    • None
    • None

      Setup:
      3 control nodes
      2 compute nodes
      3 ODL - cluster setup

      Distro: nitrogen formal release

      Steps to reproduce
      1. Create two networks
      2. Create a VM for each network
      3. Create a router and network interfaces
      4. Create 2 SG. (sg-connectivity and sg-connectivity2)

      Add rules to sg-connectivity
      openstack security group rule create sg-connectivity --ingress --dst-port 22:22 --protocol tcp
      openstack security group rule create sg-connectivity --egress --dst-port 22:22 --protocol tcp
      openstack security group rule create sg-connectivity --ingress --protocol 1 --remote-group sg-connectivity2
      openstack security group rule create sg-connectivity --egress --protocol 1 --remote-group sg-connectivity2

      Add rules to sg-connectivity2
      openstack security group rule create sg-connectivity2 --ingress --dst-port 22:22 --protocol tcp
      openstack security group rule create sg-connectivity2 --egress --dst-port 22:22 --protocol tcp
      openstack security group rule create sg-connectivity2 --ingress --protocol 1 --remote-group sg-connectivity
      openstack security group rule create sg-connectivity2 --egress --protocol 1 --remote-group sg-connectivity

      5. CHeck communication within and across the networks.

      Observation:
      Communication fails across the network.

            Unassigned Unassigned
            arthi Arthi Bhattacharjee
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: