5f4a41326d
Requests handled by the metadata-agents can now be rate-limited by source-ip. This is done to protect the OpenStack control plane against VMs querying the metadata endpoint in an overly enthusiastic way. Co-authored-by: Miguel Lavalle <mlavalle@redhat.com> Related-Bug: #1989199 Change-Id: I748ccfa8b50496dcbcbe41fd22f84249a4d46b11
9 lines
418 B
YAML
9 lines
418 B
YAML
---
|
|
features:
|
|
- Neutron allows cloud administrators to limit the rate at which VMs query
|
|
the Nova metadata service in order to protect the OpenStack deployment
|
|
from DoS or misbehaved instances. This new feature can be configured in
|
|
the neutron.conf file. Please see the "Metadata service query rate
|
|
limiting" section under Neutron configuration in the documentation for
|
|
more details.
|