Medium ODL : Nitrogen formal issue
Issue : TCP Communication not working when VMs are connected with remote SG
Steps:
- Create 2 SGs with Remote security group option
openstack security group create SG1
openstack security group create SG2
Delete all default rules from both SG1 and SG2
Create below rules in SG1 and SG2
openstack security group rule create SG1 --ingress --protocol tcp --remote-group SG2
openstack security group rule create SG2 --egress --protocol tcp --remote-group SG1
2. Create network and VMs for SG1 and SG2
openstack network create l2_network_1
openstack subnet create --network l2_network_1 --subnet-range 30.0.0.0/24 l2_subnet_1
openstack server create --image cirros --flavor cirros --nic net-id=l2_network_1 VM1 --security-group SG2 --min 1 --max 1
openstack server create --image cirros --flavor cirros --nic net-id=l2_network_1 VM2 --security-group SG1 --min 1 --max 1
NOTE: Order of the VM should not change. First create VM for SG2 and then SG1.
Bug will reproduce in this order only.
3. Try TCP from VM1 to VM2.
Expectation : TCP should successful between VM1 to VM2 (Egress -> Ingress)
Actual : TCP not working between VM1 to VM2.