Disable port security for mgt ports as well
In some deployments (OVS), port security must also be disabled on the management port for communication from astara to the appliance API. Change-Id: I10bae7041aab7b4b143987bf07d800b3e50a6444 Closes-bug: #1573156
This commit is contained in:
parent
b305beacd4
commit
64453dc26d
@ -1001,9 +1001,13 @@ class Neutron(object):
|
|||||||
security_groups=[]
|
security_groups=[]
|
||||||
)
|
)
|
||||||
|
|
||||||
if label in constants.ASTARA_SERVICE_PORT_TYPES:
|
dis_port_types = (
|
||||||
|
constants.ASTARA_SERVICE_PORT_TYPES +
|
||||||
|
constants.ASTARA_MGT_PORT_TYPES
|
||||||
|
)
|
||||||
|
if label in dis_port_types:
|
||||||
port_dict['fixed_ips'] = []
|
port_dict['fixed_ips'] = []
|
||||||
# disable port_securty on VRRP
|
# disable port_securty on VRRP, LB, MGT
|
||||||
if self.conf.neutron_port_security_extension_enabled:
|
if self.conf.neutron_port_security_extension_enabled:
|
||||||
port_dict['port_security_enabled'] = False
|
port_dict['port_security_enabled'] = False
|
||||||
|
|
||||||
|
@ -17,3 +17,8 @@ ASTARA_SERVICE_PORT_TYPES = [
|
|||||||
'VRRP',
|
'VRRP',
|
||||||
'LB',
|
'LB',
|
||||||
]
|
]
|
||||||
|
|
||||||
|
|
||||||
|
ASTARA_MGT_PORT_TYPES = [
|
||||||
|
'MGT',
|
||||||
|
]
|
||||||
|
Loading…
Reference in New Issue
Block a user