Defining source port for rules in for security groups

asked 2017-10-09 16:01:12 -0600

wujiax gravatar image

I am working on generating security group rules to mimic network isolation to the equivalent of those defined in Cisco ACLs. These rules sometimes define permitted traffic based on source port and not destination port

Here is an example for snmp permit udp <src_ip> <src_mask> eq 161 any (permit UDP traffic from <src_ip>/<src_mask> from port 161 to any IP) Note that this ACL rule does not define a destination port, only a source port.

I was wondering if there is any way to accomplish the same thing here in the security group rules neutron API

edit retag flag offensive close merge delete