Add sg rules with ipv6 ethertype.

This allows test Rally vm scenario with dual-stack or IPv6 address only. Change-Id: I38b8ee71ff5bb054fef2c48031ab7a0de475f5ab
2021-11-30 16:50:42 +02:00 · 2021-11-30 16:50:42 +02:00 · 26d4b94dd8
parent 199186f96c
commit 26d4b94dd8
1 changed files with 26 additions and 0 deletions
--- a/rally_openstack/task/contexts/network/allow_ssh.py
+++ b/rally_openstack/task/contexts/network/allow_ssh.py
@ -46,6 +46,7 @@ def _rule_to_key(rule):
    # NOTE(andreykurilin): there are more actual comparison keys, but this set
    #   should be enough for us.
    comparison_keys = [
+        "ethertype",
        "direction",
        "port_range_max",
        "port_range_min",
@ -58,6 +59,7 @@ def _rule_to_key(rule):

 _RULES_TO_ADD = [
    {
+        "ethertype": "IPv4",
        "protocol": "tcp",
        "port_range_max": 65535,
        "port_range_min": 1,
@ -65,6 +67,15 @@ _RULES_TO_ADD = [
        "direction": "ingress"
    },
    {
+        "ethertype": "IPv6",
+        "protocol": "tcp",
+        "port_range_max": 65535,
+        "port_range_min": 1,
+        "remote_ip_prefix": "::/0",
+        "direction": "ingress"
+    },
+    {
+        "ethertype": "IPv4",
        "protocol": "udp",
        "port_range_max": 65535,
        "port_range_min": 1,
@ -72,9 +83,24 @@ _RULES_TO_ADD = [
        "direction": "ingress"
    },
    {
+        "ethertype": "IPv6",
+        "protocol": "udp",
+        "port_range_max": 65535,
+        "port_range_min": 1,
+        "remote_ip_prefix": "::/0",
+        "direction": "ingress"
+    },
+    {
+        "ethertype": "IPv4",
        "protocol": "icmp",
        "remote_ip_prefix": "0.0.0.0/0",
        "direction": "ingress"
+    },
+    {
+        "ethertype": "IPv6",
+        "protocol": "ipv6-icmp",
+        "remote_ip_prefix": "::/0",
+        "direction": "ingress"
    }
 ]