Ask Your Question
0

icehouse security group not effective

asked 2014-06-06 01:12:00 -0500

eupub gravatar image

Hi there,

I have installed Icehouse on CentOS with Neutron & ML2 plugin for networking. Networking is working fine but I realized that my security groups & rules are totally not effective at all.

For example of HTTPS access to my instance (with an associated IP) - no matter what I do, remove all rules in default security group, or create a new security group with no rules that allow 443, or even remove security group entirely from the instance, I am still able to access my instance via HTTPS. In fact, it is always full access (icmp, ssh, etc) to the instance via the associated IP!

Appreciate any inputs please & Thks!

Regards, Boon Lee

[root@sgpcontroller neutron]# rpm -qa|grep openstack

openstack-nova-cert-2014.1-2.el6.noarch

openstack-selinux-0.1.3-2.el6ost.noarch

openstack-nova-novncproxy-2014.1-2.el6.noarch

python-django-openstack-auth-1.1.5-1.el6.noarch

openstack-cinder-2014.1-2.el6.noarch

openstack-nova-console-2014.1-2.el6.noarch

openstack-neutron-ml2-2014.1-11.el6.noarch

openstack-utils-2014.1-1.el6.noarch

openstack-keystone-2014.1-2.el6.noarch

openstack-glance-2014.1-2.el6.noarch

openstack-nova-common-2014.1-2.el6.noarch

openstack-nova-api-2014.1-2.el6.noarch

openstack-dashboard-2014.1-1.el6.noarch

openstack-nova-conductor-2014.1-2.el6.noarch

openstack-nova-scheduler-2014.1-2.el6.noarch

openstack-neutron-2014.1-11.el6.noarch

edit retag flag offensive close merge delete

2 answers

Sort by ยป oldest newest most voted
1

answered 2014-06-06 02:03:29 -0500

SGPJ gravatar image

updated 2014-06-06 03:13:18 -0500

Check your IP & EB tables after restarting.

edit flag offensive delete link more
0

answered 2014-06-06 02:56:02 -0500

eupub gravatar image

Please ignore this - security group works after rebooting

Thks.

Regards, Boon Lee

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-06-06 01:12:00 -0500

Seen: 179 times

Last updated: Jun 06 '14