Disabling security groups is not needed
Instead you can use port-security-enabled=False during port creation for service Change-Id: If880800379517bf1e7979d62b41a334e0f3520a9
This commit is contained in:
parent
26d6721495
commit
37dde0693d
|
@ -39,18 +39,13 @@ if $use_neutron {
|
|||
|
||||
package {'python-networking-sfc':
|
||||
ensure => installed,
|
||||
} ->
|
||||
}
|
||||
|
||||
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins } ->
|
||||
Package['python-networking-sfc'] -> Neutron_config <| |>
|
||||
Neutron_config <| |> -> Exec <| title == 'Modify neutron-openvswitch-agent.conf' |>
|
||||
|
||||
neutron_plugin_ml2 { 'securitygroup/enable_security_group': value => 'False'} ->
|
||||
neutron_plugin_ml2 { 'securitygroup/enable_ipset': value => 'False'} ->
|
||||
neutron_plugin_ml2 { 'securitygroup/firewall_driver': value => 'neutron.agent.firewall.NoopFirewallDriver'} ->
|
||||
|
||||
file_line { 'Add OSV section to neutron.conf':
|
||||
path => '/etc/neutron/neutron.conf',
|
||||
line => "\n[sfc]\ndrivers = ovs\n",
|
||||
} ->
|
||||
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins }
|
||||
neutron_config { 'sfc/drivers': value => 'ovs' }
|
||||
|
||||
exec { 'Modify neutron-openvswitch-agent.conf':
|
||||
command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf",
|
||||
|
|
|
@ -69,18 +69,14 @@ if $use_neutron {
|
|||
extra_params => $extra_params,
|
||||
}
|
||||
notify{"Schema upgrade for SFC": } ~> Exec['neutron-db-sync']
|
||||
Package['python-networking-sfc'] -> Class['::neutron::db::sync']
|
||||
}
|
||||
|
||||
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins } ->
|
||||
Package['python-networking-sfc'] -> Neutron_config <| |>
|
||||
Neutron_config <| |> -> Exec <| title == 'Modify neutron-openvswitch-agent.conf' |>
|
||||
|
||||
neutron_plugin_ml2 { 'securitygroup/enable_security_group': value => 'False'} ->
|
||||
neutron_plugin_ml2 { 'securitygroup/enable_ipset': value => 'False'} ->
|
||||
neutron_plugin_ml2 { 'securitygroup/firewall_driver': value => 'neutron.agent.firewall.NoopFirewallDriver'} ->
|
||||
|
||||
file_line { 'Add OSV section to neutron.conf':
|
||||
path => '/etc/neutron/neutron.conf',
|
||||
line => "\n[sfc]\ndrivers = ovs\n",
|
||||
} ->
|
||||
neutron_config { 'DEFAULT/service_plugins': value => $enabled_plugins }
|
||||
neutron_config { 'sfc/drivers': value => 'ovs' }
|
||||
|
||||
exec { 'Modify neutron-openvswitch-agent.conf':
|
||||
command => "sed -i 's|/usr/bin|/usr/local/bin|g' /etc/init/neutron-openvswitch-agent.conf",
|
||||
|
|
Loading…
Reference in New Issue