yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1258438] [NEW] Can't create a firewall per tenant

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Tomoko Inoue <1258438@xxxxxxxxxxxxxxxxxx>
Date: Fri, 06 Dec 2013 08:37:19 -0000
Reply-to: Bug 1258438 <1258438@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

After I created a firewall on one tenant(e.g. tenant-1), I can't create
a firewall on other tenants(e.g. tenant-2) with error messege as
follows.

500-{u'NeutronError': {u'message': u'Exceeded allowed count of firewalls
for tenant tenant-2. Only one firewall is supported per tenant.',
u'type': u'FirewallCountExceeded', u'detail': u''}}

Now I can create only one firewall per system.


fwaas_plugin.py
----------------
def create_firewall(self, context, firewall):
        LOG.debug(_("create_firewall() called"))
        tenant_id = self._get_tenant_id_for_create(context,
                                                   firewall['firewall'])
        fw_count = self.get_firewalls_count(context)
        if fw_count:
            raise FirewallCountExceeded(tenant_id=tenant_id)
----------------

=> fw_count = self.get_firewalls_count(context)

I think the function counts other tenant's firewall.

FWaaS plugin should allow creating one firewall per tenant.

** Affects: neutron
     Importance: Undecided
     Assignee: Tomoko Inoue (inoue-tomoko)
         Status: New

** Changed in: neutron
     Assignee: (unassigned) => Tomoko Inoue (inoue-tomoko)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1258438

Title:
  Can't create a firewall per tenant

Status in OpenStack Neutron (virtual network service):
  New

Bug description:
  After I created a firewall on one tenant(e.g. tenant-1), I can't
  create a firewall on other tenants(e.g. tenant-2) with error messege
  as follows.

  500-{u'NeutronError': {u'message': u'Exceeded allowed count of
  firewalls for tenant tenant-2. Only one firewall is supported per
  tenant.', u'type': u'FirewallCountExceeded', u'detail': u''}}

  Now I can create only one firewall per system.

  
  fwaas_plugin.py
  ----------------
  def create_firewall(self, context, firewall):
          LOG.debug(_("create_firewall() called"))
          tenant_id = self._get_tenant_id_for_create(context,
                                                     firewall['firewall'])
          fw_count = self.get_firewalls_count(context)
          if fw_count:
              raise FirewallCountExceeded(tenant_id=tenant_id)
  ----------------

  => fw_count = self.get_firewalls_count(context)

  I think the function counts other tenant's firewall.

  FWaaS plugin should allow creating one firewall per tenant.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1258438/+subscriptions

Follow ups

[Bug 1258438] Re: Can't create a firewall for admin tenant when at least one other tenant has a firewall
From: Thierry Carrez, 2014-04-01
[Bug 1258438] [NEW] Can't create a firewall per tenant
From: Tomoko Inoue, 2013-12-06

References

[Bug 1258438] [NEW] Can't create a firewall per tenant
From: Tomoko Inoue, 2013-12-06