neutron

History

Slawek Kaplonski 274fcbfce2 [OVS FW] Allow egress ICMPv6 only for know addresses Before that patch it was possible to send ICMPv6 packets like e.g. neutron_lib.constants.ICMPV6_TYPE_MLD_QUERY, neutron_lib.constants.ICMPV6_TYPE_RS, neutron_lib.constants.ICMPV6_TYPE_NS, neutron_lib.constants.ICMPV6_TYPE_NA And that could cause some security issues as instance could advertise that it owns IPv6 address which really don't belong to it. Now rules in table=71 which allows that traffic are "per mac/ipaddress" and are allowed only for fixed ips allocated to port and port's allowed_address_pairs. Closes-Bug: #1902917 Change-Id: I4749fdc6a6cabd253b971bf4010ff76f5593c59c (cherry picked from commit `4b5bcff64c`)		2021-02-27 20:11:21 +00:00
..
dashboards	Replace git.openstack.org URLs with opendev.org URLs	2019-04-23 10:00:45 +08:00
internals	[OVS FW] Allow egress ICMPv6 only for know addresses	2021-02-27 20:11:21 +00:00
policies	Remove Neutron LBaaS	2019-09-20 07:46:06 +00:00
stadium	Update api-ref location	2019-07-25 17:40:07 +02:00
testing	Remove one of iptables_hybrid jobs	2020-01-29 13:08:59 +00:00
alembic_migrations.rst	Replace git.openstack.org URLs with opendev.org URLs	2019-04-23 10:00:45 +08:00
client_command_extensions.rst	Update the documentation link for doc migration	2017-07-22 18:46:13 +09:00
contribute.rst	Remove Neutron LBaaS	2019-09-20 07:46:06 +00:00
development_environment.rst	Replace git.openstack.org URLs with opendev.org URLs	2019-04-23 10:00:45 +08:00
effective_neutron.rst	Replace git.openstack.org URLs with opendev.org URLs	2019-04-23 10:00:45 +08:00
index.rst	Upgrade check command - add support for 3rd party checks	2018-12-18 11:23:03 +01:00
modules.rst	Rearrange existing documentation to fit the new standard layout	2017-07-08 05:49:56 +00:00
neutron_api.rst	Rearrange existing documentation to fit the new standard layout	2017-07-08 05:49:56 +00:00
upgrade_checks.rst	Upgrade check command - add support for 3rd party checks	2018-12-18 11:23:03 +01:00