Ask Your Question
0

How to update port_filter with Neutron

asked 2014-09-03 07:45:26 -0500

oglok gravatar image

updated 2014-09-03 09:03:33 -0500

mpetason gravatar image

Hi everyone,

I'm having troubles with the anti-spoofing behaviour of Openstack. I can fix it via Neutron port-update allowing address pairs and also, removing some iptables rules. But I think it's not very elegant, so I read this link:

http://docs.openstack.org/api/opensta...

and I was wondering how to set the parameter binding:profile port_filter to False. I did something like this

neutron port-update PORT_ID --allowed-address-pairs type=dict list=true mac_address=MAC,ip_address=IP --binding:profile type=dict list="port_filter":False

However, a "neutron port-show PORT_ID" does not show if this parameter is set correctly. Does anybody know how to change this?

Thanks

edit retag flag offensive close merge delete

1 answer

Sort by » oldest newest most voted
0

answered 2016-11-15 16:26:50 -0500

geongo gravatar image

disable port security 
neutron port-show <port_id> | grep port_security_enabled 
neutron port-update <port_id> --no-security-groups 
neutron port-update <port_id> --port-security-enabled=False

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-09-03 07:45:26 -0500

Seen: 1,347 times

Last updated: Sep 03 '14