Enable security group on the Octavia management port

A dedicated security group (lb-health-mgr-sec-grp) is created for the
Octavia management port but it was unused as the port was created with
no-security-groups.
This commit enables this security group of the health-manager port.

Change-Id: Ib7ec0d194d9858b115ba9343a7117aa1f4d264ea
(cherry picked from commit a767d65dbc)
This commit is contained in:
Gregory Thiemonge 2021-07-21 15:42:30 +02:00
parent 6122900e44
commit d76130d0df
1 changed files with 1 additions and 2 deletions

View File

@ -5,8 +5,7 @@
port_id="$(openstack port show octavia-health-manager-{{ node_hostname }}-listen-port -f value -c id 2> /dev/null)" port_id="$(openstack port show octavia-health-manager-{{ node_hostname }}-listen-port -f value -c id 2> /dev/null)"
if [[ -z "${port_id}" ]]; then if [[ -z "${port_id}" ]]; then
neutron port-create {{ lb_mgmt_net_name }} --binding:host_id={{ node_hostname }} \ neutron port-create {{ lb_mgmt_net_name }} --binding:host_id={{ node_hostname }} \
--no-security-groups \ --security-group {{ lb_health_mgr_sec_grp_name }} \
--port-security-enabled=False \
--device-owner Octavia:health-mgr \ --device-owner Octavia:health-mgr \
--name octavia-health-manager-{{ node_hostname }}-listen-port \ --name octavia-health-manager-{{ node_hostname }}-listen-port \
-f value \ -f value \