tripleo-heat-templates/releasenotes/notes/fix-bridge-nf-call-defaults.rst
Terry Wilson 3d722dbc81 Set bridge-nf-call-* values to 1
Although the kernel default is 1, some distros override the defaults
via sysctl.conf. Loading br_netfilter manually will show values of
1, but then doing a 'sysctl network restart' will set the values to
0--so go ahead and override these values.

Co-Author: Luke Short <ekultails@gmail.com>
Depends-On: Ia28f2fdef34e739801c51828c99e9e6598dd2efb
Change-Id: I53dec308d359b27e62ed44e91a8eaae38d945a4f
Closes-Bug: #1843259
2019-10-16 09:29:43 -05:00

213 B

---fixes:
  • Sets the bridge-nf-call-* values to 1, overriding any distro defaults that may not be applied due to br_netfilter not being loaded. These values must be 1 for security groups to work.