Addition of firewall rules for Nuage
Added VxLAN and metadata agent firewall rules to neutron-compute-plugin for Nuage. Removed a deprecated parameter 'OSControllerIp' as well. Change-Id: If10c300db48c66b9ebeaf74b5f5fee9132e75366
This commit is contained in:
parent
b20bdcee03
commit
d5309c9443
@ -10,7 +10,6 @@ resource_registry:
|
|||||||
OS::TripleO::Services::ComputeNeutronCorePlugin: ../puppet/services/neutron-compute-plugin-nuage.yaml
|
OS::TripleO::Services::ComputeNeutronCorePlugin: ../puppet/services/neutron-compute-plugin-nuage.yaml
|
||||||
|
|
||||||
parameter_defaults:
|
parameter_defaults:
|
||||||
NeutronNuageOSControllerIp: '0.0.0.0'
|
|
||||||
NeutronNuageNetPartitionName: 'default_name'
|
NeutronNuageNetPartitionName: 'default_name'
|
||||||
NeutronNuageVSDIp: '0.0.0.0:0'
|
NeutronNuageVSDIp: '0.0.0.0:0'
|
||||||
NeutronNuageVSDUsername: 'username'
|
NeutronNuageVSDUsername: 'username'
|
||||||
|
@ -22,6 +22,10 @@ parameters:
|
|||||||
description: The password for the nova service account, used by nova-api.
|
description: The password for the nova service account, used by nova-api.
|
||||||
type: string
|
type: string
|
||||||
hidden: true
|
hidden: true
|
||||||
|
NuageMetadataPort:
|
||||||
|
description: TCP Port to listen for metadata server requests
|
||||||
|
type: string
|
||||||
|
default: '9697'
|
||||||
|
|
||||||
outputs:
|
outputs:
|
||||||
role_data:
|
role_data:
|
||||||
@ -32,5 +36,11 @@ outputs:
|
|||||||
tripleo::profile::base::neutron::agents::nuage::nova_os_tenant_name: 'service'
|
tripleo::profile::base::neutron::agents::nuage::nova_os_tenant_name: 'service'
|
||||||
tripleo::profile::base::neutron::agents::nuage::nova_os_password: {get_param: NovaPassword}
|
tripleo::profile::base::neutron::agents::nuage::nova_os_password: {get_param: NovaPassword}
|
||||||
tripleo::profile::base::neutron::agents::nuage::nova_auth_ip: {get_param: [EndpointMap, KeystoneInternal, host]}
|
tripleo::profile::base::neutron::agents::nuage::nova_auth_ip: {get_param: [EndpointMap, KeystoneInternal, host]}
|
||||||
|
tripleo.neutron_compute_plugin_nuage.firewall_rules:
|
||||||
|
'118 neutron vxlan networks':
|
||||||
|
proto: 'udp'
|
||||||
|
dport: 4789
|
||||||
|
'100 metadata agent':
|
||||||
|
dport: {get_param: NuageMetadataPort}
|
||||||
step_config: |
|
step_config: |
|
||||||
include ::tripleo::profile::base::neutron::agents::nuage
|
include ::tripleo::profile::base::neutron::agents::nuage
|
||||||
|
@ -19,10 +19,6 @@ parameters:
|
|||||||
via parameter_defaults in the resource registry.
|
via parameter_defaults in the resource registry.
|
||||||
type: json
|
type: json
|
||||||
# Config specific parameters, to be provided via parameter_defaults
|
# Config specific parameters, to be provided via parameter_defaults
|
||||||
NeutronNuageOSControllerIp:
|
|
||||||
description: IP address of the OpenStack Controller
|
|
||||||
type: string
|
|
||||||
|
|
||||||
NeutronNuageNetPartitionName:
|
NeutronNuageNetPartitionName:
|
||||||
description: Specifies the title that you will see on the VSD
|
description: Specifies the title that you will see on the VSD
|
||||||
type: string
|
type: string
|
||||||
@ -76,8 +72,7 @@ outputs:
|
|||||||
config_settings:
|
config_settings:
|
||||||
map_merge:
|
map_merge:
|
||||||
- get_attr: [NeutronBase, role_data, config_settings]
|
- get_attr: [NeutronBase, role_data, config_settings]
|
||||||
- neutron::plugins::nuage::nuage_oscontroller_ip: {get_param: NeutronNuageOSControllerIp}
|
- neutron::plugins::nuage::nuage_net_partition_name: {get_param: NeutronNuageNetPartitionName}
|
||||||
neutron::plugins::nuage::nuage_net_partition_name: {get_param: NeutronNuageNetPartitionName}
|
|
||||||
neutron::plugins::nuage::nuage_vsd_ip: {get_param: NeutronNuageVSDIp}
|
neutron::plugins::nuage::nuage_vsd_ip: {get_param: NeutronNuageVSDIp}
|
||||||
neutron::plugins::nuage::nuage_vsd_username: {get_param: NeutronNuageVSDUsername}
|
neutron::plugins::nuage::nuage_vsd_username: {get_param: NeutronNuageVSDUsername}
|
||||||
neutron::plugins::nuage::nuage_vsd_password: {get_param: NeutronNuageVSDPassword}
|
neutron::plugins::nuage::nuage_vsd_password: {get_param: NeutronNuageVSDPassword}
|
||||||
|
Loading…
Reference in New Issue
Block a user