yahoo-eng-team team mailing list archive

[Victor Morales <victor.morales@xxxxxxxxx>]

I tried to reproduce the issue with the script that you provide.  I have
some comments on that.  The first one is to add the --poll argument in
nova boot command, this is useful for waiting until the VM is ready.

nova boot "$VM" --flavor m1.tiny --image "$IMG" --nic net-name=$INT
--security-groups $SECGROUP --poll

The other one, is regarding the validation that you have for reusing
Floating IPs, it seems to fail when there is more than one available.

Regarding accessing that VMs thru ssh and doing ping, I didn't have
troubles to do it.  I changed the configuration option and restarted the
agent service, so maybe it's your environment.

** Changed in: neutron
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1609090

Title:
  [ovs firewall] VM can't be reached regardless of security group with
  icmp allowed

Status in neutron:
  Invalid

Bug description:
  Reproduced on upstream devstack.

  /etc/neutron/plugins/ml2/ml2_conf.ini has

  [securitygroup]
  firewall_driver = openvswitch

  The issue was triggered by the following script
  http://paste.openstack.org/show/545720/ (output from reproduction
  http://paste.openstack.org/show/545724/)

  Steps to reproduce:
  1. create internal network and router connected to this network; set devstack public network as gateway.
  2. create security group with ping/ssh allowed.
  3. boot vm with security group from step 2
  4. try to ping created vm

  Will result in Destination Host Unreachable.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1609090/+subscriptions