8de0c36cb9
This patch implements a driver based on OVN, it creates port_group for every l3 firewall_group and adds relating ports to port_group, it also transforms firewall_rules to stateless acls. Tests will been put in next patch. NOTE: it depends on ML2/OVN. Partially-Implements: blueprint support-l3-firewall-for-ovn-driver Related-Bug: #1971958 Change-Id: If153645b3da198ef1746e98af80ac6f0a0b41bf9
14 lines
671 B
Plaintext
14 lines
671 B
Plaintext
FWAAS_DRIVER_V2=${FWAAS_DRIVER_V2:-iptables_v2}
|
|
FW_L2_DRIVER=${FW_L2_DRIVER:-noop}
|
|
FWAAS_PLUGIN_V2=${FWAAS_PLUGIN:-firewall_v2}
|
|
|
|
NEUTRON_FWAAS_DIR=$DEST/neutron-fwaas
|
|
NEUTRON_FWAAS_CONF_FILE=neutron_fwaas.conf
|
|
|
|
NEUTRON_FWAAS_CONF=$NEUTRON_CONF_DIR/$NEUTRON_FWAAS_CONF_FILE
|
|
|
|
NEUTRON_FWAAS_SERVICE_PROVIDERV2=${NEUTRON_FWAAS_SERVICE_PROVIDERV2:-FIREWALL_V2:fwaas_db:neutron_fwaas.services.firewall.service_drivers.agents.agents.FirewallAgentDriver:default}
|
|
NEUTRON_FWAAS_SERVICE_PROVIDERV2_OVN=${NEUTRON_FWAAS_SERVICE_PROVIDERV2:-FIREWALL_V2:fwaas_db:neutron_fwaas.services.firewall.service_drivers.ovn.firewall_l3_driver.OVNFwaasDriver:default}
|
|
|
|
enable_service q-fwaas-v2
|