yahoo-eng-team team mailing list archive

[Matt <mreid@xxxxxxxxxx>]

Public bug reported:

It would be nice if Horizon gave more flexibility around security group
and rule creation. Adding them one at a time through the UI can be very
tedious, and it doesn't seem like there's an easy way to take a security
group you set up in one instance and use it in a different instance of
OpenStack, other than manually recreating each piece of it. It might be
useful to allow importing and exporting rule sets. If there are common
sets of ports to open, perhaps we could offer prebuilt sets that users
could then extend if needed or pull into existing security groups?

Just seems like there's more we could do in this area to make it easier
to get the ports open that you need to, and ensure that those settings
are portable. If someone has a test environment they're playing around
with, and they then set up production OpenStack, is there a good way for
them to pull those security groups they set up and tested from test/dev
into prod currently?

I can't speak towards if that's a legitimate use case, but it seems
reasonable to me.

** Affects: horizon
     Importance: Undecided
         Status: New

** Affects: neutron
     Importance: Undecided
         Status: New

** Affects: nova
     Importance: Undecided
         Status: New


** Tags: ux

** Also affects: nova
   Importance: Undecided
       Status: New

** Also affects: neutron
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1326411

Title:
  Improved Security Group and Rule Creation

Status in OpenStack Dashboard (Horizon):
  New
Status in OpenStack Neutron (virtual network service):
  New
Status in OpenStack Compute (Nova):
  New

Bug description:
  It would be nice if Horizon gave more flexibility around security
  group and rule creation. Adding them one at a time through the UI can
  be very tedious, and it doesn't seem like there's an easy way to take
  a security group you set up in one instance and use it in a different
  instance of OpenStack, other than manually recreating each piece of
  it. It might be useful to allow importing and exporting rule sets. If
  there are common sets of ports to open, perhaps we could offer
  prebuilt sets that users could then extend if needed or pull into
  existing security groups?

  Just seems like there's more we could do in this area to make it
  easier to get the ports open that you need to, and ensure that those
  settings are portable. If someone has a test environment they're
  playing around with, and they then set up production OpenStack, is
  there a good way for them to pull those security groups they set up
  and tested from test/dev into prod currently?

  I can't speak towards if that's a legitimate use case, but it seems
  reasonable to me.

To manage notifications about this bug go to:
https://bugs.launchpad.net/horizon/+bug/1326411/+subscriptions