358c2edb53
Currently, FWaaS L2 driver based OVS only works correctly with VM ports, which are landed at compute nodes with: * mechanism_drivers=openvswitch * firewall_driver=noop or openvswitch for security group If you try to add a VM port to a FWG, which is landed at compute nodes with: * mechanism_drivers=linuxbridge and firewall_driver=iptables * mechanism_drivers=openvswitch and firewall_driver=iptables_hybrid Then, FWaaS V2 API won't work correctly. So this patch validates if VM ports are supported fully by FWaaS L2 driver at this moment. In the future, if FWaaS L2 driver can support not only hybrid port but also other ports, we can remove this validation. Change-Id: Ib0a85b55840d8dfe6bcae91484a0440902d3c49a Closes-Bug: #1746855
8 lines
291 B
YAML
8 lines
291 B
YAML
---
|
|
prelude: >
|
|
Validating if a port is supported by FWaaS V2
|
|
fixes:
|
|
- |
|
|
[`bug 1746855 <https://bugs.launchpad.net/neutron/+bug/1746855>`__]
|
|
Now, FWaaS V2 will validate if a port is supported before adding it
|
|
to a FWG. This helps to make sure FWaaS V2 API works as expected. |