yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1116562] Re: nova reorders all iptables rules on component start

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Thierry Carrez <thierry.carrez+lp@xxxxxxxxx>
Date: Thu, 21 Feb 2013 08:54:52 -0000
Reply-to: Bug 1116562 <1116562@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: nova
       Status: Fix Committed => Fix Released

** Changed in: nova
    Milestone: None => grizzly-3

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1116562

Title:
  nova reorders all iptables rules on component start

Status in OpenStack Compute (Nova):
  Fix Released

Bug description:
  There's currently no method for guaranteeing iptables rules ordering
  on any system running nova.  This is because nova adds and removes
  chains, reordering all the rules on the system.  The goal of this
  patch is to provide a method for administrators to have a
  deterministic way of placing rules both before and after nova's own
  rulesets.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1116562/+subscriptions