yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #69108
[Bug 1716045] Re: Security Groups don't support protocol 4 (ip-in-ip) and returns 500
Reviewed: https://review.openstack.org/511561
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=7ff492c5bb9ce9f24f12db40c8e3a33beb47f87b
Submitter: Zuul
Branch: master
commit 7ff492c5bb9ce9f24f12db40c8e3a33beb47f87b
Author: Brian Haley <bhaley@xxxxxxxxxx>
Date: Thu Oct 12 15:25:26 2017 -0400
Support protocol numbers in security group API
Somewhere along the way we broke supporting numbers in
the security group API that were not in our known list
of protocols. In order to fix this properly we must
use the correct arguments when using iptables-save, as
it could use a name instead of a number, or vice-versa.
Determined the list of mappings by doing:
for num in {0..255}; do iptables -A INPUT -p $num; done
# iptables-save
Change-Id: I5895250b47ddf664d214cf085be693c3897e0c87
Closes-bug: #1716045
Closes-bug: #1716790
** Changed in: neutron
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1716045
Title:
Security Groups don't support protocol 4 (ip-in-ip) and returns 500
Status in neutron:
Fix Released
Bug description:
When trying to create a security group with protocol 4 Neutron returns
500:
stack@octavia:~/devstack$ openstack security group rule create --protocol 4 b30911a1-558c-41fe-89fd-915c0da030cf
Error while executing command: Internal Server Error (HTTP 500) (Request-ID: req-d1e3eb48-0799-4c7b-b4ac-36501c221842)
I tried this on devstack so it should be pretty easy to reproduce.
Ideally I would like to see IP-in-IP supported but a better error
message might be a first step.
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1716045/+subscriptions
References
