Ask Your Question
2

How to setup security groups for IPv6 with nova-network?

asked 2013-05-23 02:44:17 -0500

blairo gravatar image

updated 2013-07-30 16:12:36 -0500

Ryan Lane gravatar image

Hi.

We've got a Folsom cloud running nova-network in FlatDHCP multi-host, currently with just a single public fixed range.

We followed the relevant config docs to get IPv6 going (plus adding a bunch of rules allowing ICMPv6 on the compute bridges for NDP). Then we found this in the instance networking docs :

Currently, ipv6 and other protocols cannot be managed with the security rules, making them permitted by default

Is that accurate or is it possible to get secgroups going for IPv6 under nova-network?

edit retag flag offensive close merge delete

Comments

For some reason the links in my post are not marking up as they did in the preview...

blairo gravatar imageblairo ( 2013-05-23 02:49:04 -0500 )edit
add a comment

2 answers

Sort by ยป oldest newest most voted
1

answered 2013-07-30 15:45:46 -0500

Ryan Lane gravatar image

It's currently not supported. This is definitely a major feature that's missing from nova-network (and nuetron).

edit flag offensive delete link more
add a comment
0

answered 2014-10-08 12:43:44 -0500

jtopjian gravatar image

I just came across this in Google and wanted to mention that as of Havana+, nova-network and IPv6 security groups do work. We are seeing some issues with port ranges, though.

Possible useful information:

  • Use /128 for individual IPv6 addresses
  • Use ::/0 as the 0.0.0.0/0 equivilent
edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

2 followers

subscribe to rss feed

Stats

Asked: 2013-05-23 02:44:17 -0500

Seen: 1,374 times

Last updated: Jul 30 '13

Related questions

Where can I find a "Dummy" guide to setting up nova-network, explaining bridged networking, fixed / floating IPs and so on? Thanks Uwe

nova-network doesn't start after reinstall

Security groups with OVS instead of iptables?

Nova network breaks access to Internet on compute node

Issues configuring linuxbridge firewall

Howto use Horizon with nova-network (Havana / Ubuntu 12.04)

Kilo nova-network metadata unreachale 169.254.169.254

Issue with IPv6 address assignment on provider network with Windows instances

Please someone help me ! Command line create security group say kik port 22 that pings with external internet.

Can't ping from VM to Controller Node Ubuntu/Havana/nova-networking