9e699c3743
OVN firewall driver can't silently normalize CIRDs given in
the security group rule's "remote_ip_prefix".
Because of that if user created rule with not normalized CIDR, it
wasn't applied by the OVN driver.
Now OVN driver will normalize such rules before applying them.
The OVN driver will now also check if SG rules with same normalized
and same direction, port range, protocol and ethertype already exists in
the SG. If so, it will not add or remove rule in the OVN.
Rule will be added or removed only if there is no other same rules in
the SG.
Change-Id: I0d9295545384844e81b0ffe3aa7483324f9a9ae5
Related-Bug: #1869129
(cherry picked from commit
|
||
---|---|---|
.. | ||
ovn | ||
__init__.py | ||
_constants.py | ||
_deprecate.py | ||
cache_utils.py | ||
config.py | ||
coordination.py | ||
eventlet_utils.py | ||
ipv6_utils.py | ||
profiler.py | ||
test_lib.py | ||
utils.py |