How to update port_filter with Neutron

asked 2014-09-03 07:45:26 -0600

oglok gravatar image

updated 2014-09-03 09:03:33 -0600

mpetason gravatar image

Hi everyone,

I'm having troubles with the anti-spoofing behaviour of Openstack. I can fix it via Neutron port-update allowing address pairs and also, removing some iptables rules. But I think it's not very elegant, so I read this link:

and I was wondering how to set the parameter binding:profile port_filter to False. I did something like this

neutron port-update PORT_ID --allowed-address-pairs type=dict list=true mac_address=MAC,ip_address=IP --binding:profile type=dict list="port_filter":False

However, a "neutron port-show PORT_ID" does not show if this parameter is set correctly. Does anybody know how to change this?


edit retag flag offensive close merge delete

1 answer

Sort by » oldest newest most voted

answered 2016-11-15 16:26:50 -0600

geongo gravatar image

disable port security 
neutron port-show <port_id> | grep port_security_enabled 
neutron port-update <port_id> --no-security-groups 
neutron port-update <port_id> --port-security-enabled=False

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2014-09-03 07:45:26 -0600

Seen: 1,632 times

Last updated: Sep 03 '14