yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1320775] Re: fwaas:Firewall in "active" status is not working when there is no external g/w to the router

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Chuck Short <chuck.short@xxxxxxxxxxxxx>
Date: Thu, 07 Aug 2014 02:44:59 -0000
Reply-to: Bug 1320775 <1320775@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Also affects: neutron/icehouse
Importance: Undecided
Status: New

** Tags removed: icehouse-backport-potential

** Changed in: neutron/icehouse
Milestone: None => 2014.1.2

** Changed in: neutron/icehouse
Status: New => Fix Committed

--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1320775

Title:
fwaas:Firewall in "active" status is not working when there is no
external g/w to the router

Status in OpenStack Neutron (virtual network service):
Fix Released
Status in neutron icehouse series:
Fix Committed

Bug description:
Steps to Reproduce:
1. create two network connected to the router and each network having a VM
2. create firewall rule of icmp deny
3. attach the firewall rule to the policy
4. Create firewall with that policy and check that firewall is active
5. Try to ping from one vm to another vm.
Actual Results:
VM is able to ping even though firewall is active. However the ping fails as expected after creating external gateway to the router.
Expected Results:
It should fail since the firewall is active

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1320775/+subscriptions

References

[Bug 1320775] [NEW] fwaas:Firewall in "active" status is not working when there is no external g/w to the router
From: Rajkumar, 2014-05-19