Ask Your Question
0

default security group rules

asked 2017-03-03 06:41:28 -0600

Damian Dąbrowski gravatar image

Hello,

I'm looking for any way to change default security group rules. For example, if I'll create new project, it will have specified rules in default security group.

I've found nova commands like secgroup-add-default-rule, secgroup-delete-default-rule, secgroup-list-default-rules but its all deprecated.

I would be grateful for any help.

edit retag flag offensive close merge delete

4 answers

Sort by » oldest newest most voted
0

answered 2017-03-13 12:40:39 -0600

kisahm gravatar image

i have the same need. is there a way to define a default set of security groups which are automatic added to future tenants?

edit flag offensive delete link more
0

answered 2017-03-03 10:41:24 -0600

WigiPedia gravatar image

The commands are as follows:

openstack security group list

openstack security group create --project <project> --project-domain <project-domain> <name>

openstack security group rule create --protocol <tcp/udp> --dst-port <start:end> \
--src-address <CIDR> <security group name/ID>

openstack security group rule delete <rule ID>

openstack security group delete <group name/ID>

There are other commands that are also useful and can be found by entering the openstack command environment and issuing the help command.

edit flag offensive delete link more
0

answered 2017-03-03 09:47:24 -0600

Damian Dąbrowski gravatar image

bcollins, thanks for the answer, but I need to set rules for all future projects before creating them. In Your method, I need to set it separately for each project.

edit flag offensive delete link more

Comments

1

im still searching for this as well. its nice information to know.

bcollins gravatar imagebcollins ( 2017-03-05 08:34:51 -0600 )edit

I'm also looking for something like this. Any solutions yet?

Campos gravatar imageCampos ( 2017-06-21 14:52:01 -0600 )edit
1

answered 2017-03-03 09:26:37 -0600

if you login to the project and open the projects default security group, you can edit that and each machine deploy on that project will use that default if no other is specified.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2017-03-03 06:41:28 -0600

Seen: 1,814 times

Last updated: Mar 03 '17