Ask Your Question
1

Cannot delete Security Group

asked 2014-04-15 07:55:17 -0600

mewald gravatar image

updated 2014-04-19 06:36:26 -0600

darragh-oreilly gravatar image

Hi, it looks like there is something wrong with deleting security groups:

root@controller:~# nova secgroup-list
+--------------------------------------+---------+-------------+ 
| Id                                   | Name    | Description |
+--------------------------------------+---------+-------------+ 
| 0e1f0e1a-b18e-4c6d-9163-1ab194f4b500 | default | default     | 
| 00e2e7ec-097f-4680-9b7c-146668f0bafd | ssh     | allow ssh   | 
| a6c41fbf-16e2-4a7f-95c4-3669f2511bf5 | ssh     | allow rdp   |
+--------------------------------------+---------+-------------+ 
root@controller:~# nova secgroup-delete ssh 
ERROR: Multiple security group matches found for name 'ssh', use an ID to be more specific.
root@controller:~# nova help secgroup-delete  usage: nova secgroup-delete <secgroup>

    Delete a security group.

    Positional arguments:   <secgroup>  ID or name of security group. 

root@controller:~# nova secgroup-delete a6c41fbf-16e2-4a7f-95c4-3669f2511bf5
ERROR: Secgroup ID or name 'a6c41fbf-16e2-4a7f-95c4-3669f2511bf5' not found.
root@controller:~#

Is there any way to fix this besides going to the database level?

cheers Mathias

edit retag flag offensive close merge delete

Comments

are you using nova-network or neutron?

darragh-oreilly gravatar imagedarragh-oreilly ( 2014-04-19 06:37:40 -0600 )edit
add a comment

2 answers

Sort by ยป oldest newest most voted
0

answered 2014-04-20 09:05:31 -0600

darragh-oreilly gravatar image

updated 2014-04-20 09:06:02 -0600

Looks like this bug and it has been fixed, so you could upgrade your client or do this instead:

$ neutron security-group-delete $SG_UUID
edit flag offensive delete link more

Comments

[root@dfw02 ~(keystone_admin)]$ nova secgroup-list
+--------------------------------------+---------+-----------------------------+
| Id | Name | Description |
+--------------------------------------+---------+-----------------------------+
| be268ee7-62dc-461d-9c33-2936a10eef03 | default | default |
| c80f2e4d-f28c-4d73-a518-790cbc085d41 | rdp | RDP-enabled Windows domains |
+--------------------------------------+---------+-----------------------------+
[root@dfw02 ~(keystone_admin)]$ export SG_UUID=c80f2e4d-f28c-4d73-a518-790cbc085d41
[root@dfw02 ~(keystone_admin)]$ echo $SG_UUID
c80f2e4d-f28c-4d73-a518-790cbc085d41
[root@dfw02 ~(keystone_admin)]$ neutron security-group-delete $SG_UUID
Deleted security_group: c80f2e4d-f28c-4d73-a518-790cbc085d41
[root@dfw02 ~(keystone_admin)]$ nova secgroup-list
+--------------------------------------+---------+-------------+
| Id | Name | Description |
+--------------------------------------+---------+-------------+
| be268ee7-62dc-461d-9c33-2936a10eef03 | default | default |
+--------------------------------------+---------+-------------+

dbaxps gravatar imagedbaxps ( 2014-04-20 09:36:04 -0600 )edit
add a comment
-1

answered 2014-04-19 05:54:10 -0600

dbaxps gravatar image

updated 2014-04-19 05:56:57 -0600

For me it works this way

[root@dfw02 ~(keystone_boris)]$ nova secgroup-list
+--------------------------------------+---------+-----------------------------+
| Id                                   | Name    | Description                 |
+--------------------------------------+---------+-----------------------------+
| 4b72bcaf-b456-4222-afcc-8885326b96b2 | default | default                     |
| bcf315e7-48d2-4509-8dc6-6e557f303895 | rdp01   | RDP-enabled Windows domains |
+--------------------------------------+---------+-----------------------------+
[root@dfw02 ~(keystone_boris)]$  nova secgroup-delete bcf315e7-48d2-4509-8dc6-6e557f303895
ERROR: Secgroup ID or name 'bcf315e7-48d2-4509-8dc6-6e557f303895' not found.
[root@dfw02 ~(keystone_boris)]$  nova secgroup-delete rdp01
+--------------------------------------+-------+-----------------------------+
| Id                                   | Name  | Description                 |
+--------------------------------------+-------+-----------------------------+
| bcf315e7-48d2-4509-8dc6-6e557f303895 | rdp01 | RDP-enabled Windows domains |
+--------------------------------------+-------+-----------------------------+
[root@dfw02 ~(keystone_boris)]$ nova secgroup-list
+--------------------------------------+---------+-------------+
| Id                                   | Name    | Description |
+--------------------------------------+---------+-------------+
| 4b72bcaf-b456-4222-afcc-8885326b96b2 | default | default     |
+--------------------------------------+---------+-------------+

Just name of secgroup not id.

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2014-04-15 07:55:17 -0600

Seen: 3,581 times

Last updated: Apr 20 '14

Related questions

why i could not ping my vm with floating IP when i hard reboot my vm

How do you make the iptables work compatibly with Open Vswitch?

is it possible that security group rules are modified by group admins only?

Security rules not being applied

heat security group id

IP & mac-spoofing in openstack

Problem with Security Groups JSON - Is this a bug?

Server action: add and remove Security Group (compute v2.0 API)

Openstack security group rules implemented ?

How to setup security groups for IPv6 with nova-network?