← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #40395

[Bug 1507866] [NEW] Scheduling of Firewall rules

  Thread PreviousDate PreviousThread Next 
Public bug reported:

(A)Summary : Firewall rules in Openstack does not support scheduling
(B)Further information :
(B.1)High level description: Currently Openstack firewall rules do not allow scheduling. When a router is associated with a firewall, the rules making the firewall are active for the whole duration till the rule is a part of the firewall.
However, users may require a scheduled action in the firewall, so that a single rule can act upon the firewall packets for a specific time period.After the time period expires, the rule can change its behavior on the same packets.
(B.2)Pre-conditions: The following requirement does not have an explicit pre-conditon.
Note:
- This is applicable for all tenants
(B.3)Step-by-step reproduction steps: NA, as this feature does not currently exist in Openstack.     
(B.4)Expected output: User should be able to create a Firewall rule which can be scheduled, to provide extended support to the user.
(B.5)Actual output: Such a facility in the firewall rule is not available.
(B.6)Version:
            OpenStack version (Specific stable branch, or git hash if from trunk): Tag ID : c1310f32fbb6dfa958bb31152ee5b492b177c6cb
            Linux distro, kernel.: Ubuntu 14.04
            DevStack or other _deployment_ mechanism?
        Environment: Neutron with Firewall Extensions, on a single node machine.
                                 However, the above requirement is independent of the environment.
(C)Perceived severity: Medium

** Affects: neutron
     Importance: Undecided
     Assignee: Reedip (reedip-banerjee)
         Status: New


** Tags: fwaas

** Changed in: neutron
     Assignee: (unassigned) => Reedip (reedip-banerjee)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1507866

Title:
  Scheduling of Firewall rules

Status in neutron:
  New

Bug description:
  (A)Summary : Firewall rules in Openstack does not support scheduling
  (B)Further information :
  (B.1)High level description: Currently Openstack firewall rules do not allow scheduling. When a router is associated with a firewall, the rules making the firewall are active for the whole duration till the rule is a part of the firewall.
  However, users may require a scheduled action in the firewall, so that a single rule can act upon the firewall packets for a specific time period.After the time period expires, the rule can change its behavior on the same packets.
  (B.2)Pre-conditions: The following requirement does not have an explicit pre-conditon.
  Note:
  - This is applicable for all tenants
  (B.3)Step-by-step reproduction steps: NA, as this feature does not currently exist in Openstack.     
  (B.4)Expected output: User should be able to create a Firewall rule which can be scheduled, to provide extended support to the user.
  (B.5)Actual output: Such a facility in the firewall rule is not available.
  (B.6)Version:
              OpenStack version (Specific stable branch, or git hash if from trunk): Tag ID : c1310f32fbb6dfa958bb31152ee5b492b177c6cb
              Linux distro, kernel.: Ubuntu 14.04
              DevStack or other _deployment_ mechanism?
          Environment: Neutron with Firewall Extensions, on a single node machine.
                                   However, the above requirement is independent of the environment.
  (C)Perceived severity: Medium

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1507866/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next