Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version
  • I think the problem is the iptables as the packet can go instance -> port tap -> iptables -> compute physical interface -> controller physical interface but not controller physical interface -> compute physical interface -> iptables -x-> port tap.
  • can anyone tell me how to config iptables ?
  • I think solved the problem myself. The issue is in the iptables as iptables so I decided to switch it off by doing the packet can go instance -> port tap -> iptables -> following

    in /etc/neutron/plugins/ml2/linuxbridge_agent.ini of both controller and compute physical interface -> controller physical interface but not controller physical interface -> compute physical interface -> iptables -x-> port tap.

  • node

  • can
    [securitygroup]
    ...
    enable_security_group = False
    firewall_driver = neutron.agent.firewall.NoopFirewallDriver
    

    for anyone tell me how to config iptables ?

  • out there has this plz try it, it worked for me, fear no more, no sleepless night wondering why. Cheers ref https://gist.github.com/djoreilly/db9c2d32a473c6643551