From a52aa22125f5300e2f26c7764ffa87d0ee3a3d98 Mon Sep 17 00:00:00 2001 From: Ben Nemec Date: Thu, 13 Dec 2018 21:27:36 +0000 Subject: [PATCH] Add more necessary firewall rules to ovb-instack Apparently the undercloud firewall configuration changed and no longer works without explicit accept rules for the public network. --- bin/ovb-instack | 2 ++ 1 file changed, 2 insertions(+) diff --git a/bin/ovb-instack b/bin/ovb-instack index 871c8db..68fdff4 100755 --- a/bin/ovb-instack +++ b/bin/ovb-instack @@ -82,6 +82,8 @@ network_config: EOF_CAT sudo os-net-config -c /tmp/eth2.cfg -v sudo iptables -A POSTROUTING -s 10.0.0.0/24 ! -d 10.0.0.0/24 -j MASQUERADE -t nat +sudo iptables -I FORWARD -s 10.0.0.0/24 -j ACCEPT +sudo iptables -I FORWARD -d 10.0.0.0/24 -j ACCEPT timer 'undercloud install' timer