openstack
/
neutron-fwaas
Code Issues Proposed changes
neutron-fwaas/neutron_fwaas/services/firewall/drivers
History
Cuong Nguyen f589293aec FW rule applied incorrectly if port specified is a range 
When creating a firewall rule with port specified as a range of values,
e.g. [1], conntrack command for deleting current conntrack entries is
applied to the first number in the range, e.g. port #8778 in [1],
instead of the range of ports 8778:9000.

This incorrect behavior occurs because conntrack-tools
does not understand the port as a range of values.
This patch set fixes that issue by following the same method as done
in the netlink implementation in [2].

[1] "neutron firewall-rule-create --protocol tcp --action allow
--ip-version 4 --destination-port 8778:9000 --enabled True"
[2] https://review.openstack.org/#/c/438445/

Closes-Bug: #1702242
Co-Authored-By: Vu Cong Tuan <tuanvc@vn.fujitsu.com>
Change-Id: Ib17db09069a07f35109357d20b67b1acfa85c1a4
 		2017-08-18 09:14:12 +00:00
..
linux FW rule applied incorrectly if port specified is a range 2017-08-18 09:14:12 +00:00
__init__.py Split fwaas services code into neutron-fwaas 2014-12-08 13:38:07 -07:00
conntrack_base.py Enable to configure conntrack driver 2017-03-31 17:33:50 +07:00
fwaas_base.py Enable warning-is-error in doc build 2017-07-05 04:52:49 +09:00
fwaas_base_v2.py Enable warning-is-error in doc build 2017-07-05 04:52:49 +09:00