x
/
fuel-plugin-networking-sfc
Code Issues Proposed changes

Disabling security groups is not needed 

Instead you can use port-security-enabled=False during
port creation for service

Change-Id: If880800379517bf1e7979d62b41a334e0f3520a9
This commit is contained in:
Bartosz Kupidura 2016-06-17 13:30:23 +00:00
parent 26d6721495
commit 37dde0693d
2 changed files with 11 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
deployment_scripts/puppet/manifests/networking-sfc-compute.pp
View File

@ -39,18 +39,13 @@ if $use_neutron {
package {'python-networking-sfc': package {'python-networking-sfc':
ensure => installed, ensure => installed,
} -> }
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins } -> Package['python-networking-sfc'] -> Neutron_config <| |>
Neutron_config <| |> -> Exec <| title == 'Modify neutron-openvswitch-agent.conf' |>
neutron_plugin_ml2 { 'securitygroup/enable_security_group': value => 'False'} -> neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins }
neutron_plugin_ml2 { 'securitygroup/enable_ipset': value => 'False'} -> neutron_config { 'sfc/drivers': value => 'ovs' }
neutron_plugin_ml2 { 'securitygroup/firewall_driver': value => 'neutron.agent.firewall.NoopFirewallDriver'} ->
file_line { 'Add OSV section to neutron.conf':
path => '/etc/neutron/neutron.conf',
line => "\n[sfc]\ndrivers = ovs\n",
} ->
exec { 'Modify neutron-openvswitch-agent.conf': exec { 'Modify neutron-openvswitch-agent.conf':
command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf", command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf",

16
deployment_scripts/puppet/manifests/networking-sfc-controller.pp
View File

@ -68,19 +68,15 @@ if $use_neutron {
class { '::neutron::db::sync': class { '::neutron::db::sync':
extra_params => $extra_params, extra_params => $extra_params,
} }
notify{"Schema upgrade for SFC": } ~> Exec['neutron-db-sync'] notify{"Schema upgrade for SFC": } ~> Exec['neutron-db-sync']
Package['python-networking-sfc'] -> Class['::neutron::db::sync']
} }
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins } -> Package['python-networking-sfc'] -> Neutron_config <| |>
Neutron_config <| |> -> Exec <| title == 'Modify neutron-openvswitch-agent.conf' |>
neutron_plugin_ml2 { 'securitygroup/enable_security_group': value => 'False'} -> neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins }
neutron_plugin_ml2 { 'securitygroup/enable_ipset': value => 'False'} -> neutron_config { 'sfc/drivers': value => 'ovs' }
neutron_plugin_ml2 { 'securitygroup/firewall_driver': value => 'neutron.agent.firewall.NoopFirewallDriver'} ->
file_line { 'Add OSV section to neutron.conf':
path => '/etc/neutron/neutron.conf',
line => "\n[sfc]\ndrivers = ovs\n",
} ->
exec { 'Modify neutron-openvswitch-agent.conf': exec { 'Modify neutron-openvswitch-agent.conf':
command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf", command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf",