neutron

allowed-address-pairs

Registered by Aaron Rosen on 2013-07-17

https://docs.google.com/document/d/1hyB3dIkRF623JlUsvtQFo9fCKLsy0gN8Jf6SWnqbWWA/edit

Blueprint information

Status:: Complete

Approver:: None

Priority:: Medium

Drafter:: None

Direction:: Approved

Assignee:: Aaron Rosen

Definition:: Approved

Series goal:: Accepted for havana

Implementation:: Implemented

Milestone target:: 2013.2

Started by: Thierry Carrez on 2013-08-27

Completed by: Aaron Rosen on 2013-09-05

Related branches

Related bugs

Sprints

Whiteboard

I would additionally request that we have

allowed_addresses: 'all'

for 'no antispoofing please'.
------------------
And if you wished to have the instances be targets for Linux Virtual Server (http://www.linuxvirtualserver.org/), an option to block arp for that ip.

Hi -- I think for disabling antispoofing completely one would need to implement the port security extension: https://github.com/openstack/neutron/blob/master/neutron/extensions/portsecurity.py . I think this is a better approach imo.

Gerrit topic: https://review.openstack.org/#q,topic:bp/allowed-address-pairs,n,z

Addressed by: https://review.openstack.org/38230
Implement Allowed Address Pairs

Addressed by: https://review.openstack.org/38566
Fix test fail in neutron.tests.unit.test_security_groups_rpc

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

Christian Daudt

Jeffrey Zhang

Kevin Fox

Mathieu Gagné

Qing Hao

Trevor R Jr