yahoo-eng-team team mailing list archive

[Bernard Cafarelli <1885262@xxxxxxxxxxxxxxxxxx>]

Updating status on this one, neutron and ovsdbapp work was completed:

https://review.opendev.org/c/openstack/neutron/+/789974/
https://review.opendev.org/c/openstack/ovsdbapp/+/794342/
https://review.opendev.org/c/openstack/releases/+/796473/

** Changed in: neutron
     Assignee: (unassigned) => Ihar Hrachyshka (ihar-hrachyshka)

** Changed in: neutron
       Status: Confirmed => Fix Released

** Changed in: neutron
    Milestone: None => xena-3

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1885262

Title:
  Add stateless firewall support to OVN

Status in neutron:
  Fix Released

Bug description:
  In Ussuri, we added support for stateless firewall [1]

  This added support for stateful attribute in security group, with
  needed parts in API extensions "stateful-security-group", database,
  ... [2]

  However implementation is currently only done for the iptables drivers
  in ML2/OVS, this limitation is noted in release notes for the feature.

  As proposed discussed in the Victoria PTG [3], we should add support
  for this attribute in OVN driver.

  It should be easy to do [4] and give feature support parity in OVN

  [1] https://bugs.launchpad.net/neutron/+bug/1753466
  [2] https://review.opendev.org/#/c/572767/
  [3] https://etherpad.opendev.org/p/neutron-victoria-ptg L162
  [4] http://www.openvswitch.org/support/dist-docs/ovn-northd.8.html

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1885262/+subscriptions