openstack/tripleo-heat-templates
Code Issues Proposed changes
acd41a6083
tripleo-heat-templates/releasenotes/notes/nova_migration_limit_access-20be8d69686ca95c.yaml
Martin Schuppert c04c9b0d70 Limit access to sshd used for nova migration 
Previously access to the sshd running by the nova-migration-target
container is only limited via the sshd_config. While login is
not possible from other networks, the service is reachable via
all networks. This change limits the access to the NovaLibvirt
and NovaApi networks which are used for cold and live-migration.

Change-Id: Ie868463143af66c7004dbcacefde76ca0977880e
2021-04-12 15:18:22 +02:00

9 lines
357 B
YAML
Raw Blame History

---
fixes:
- |
Previously access to the sshd running by the nova-migration-target
container is only limited via the sshd_config. While login is
not possible from other networks, the service is reachable via
all networks. This change limits the access to the NovaLibvirt
and NovaApi networks which are used for cold and live-migration.
View Git Blame Copy Permalink