Ask Your Question
0

allocate specific floating ip for tenant

asked 2015-02-01 01:45:56 -0500

amz168 gravatar image

Hi, I have class C sub-net 255.255.255.0 for the public network. And, I want to only allowed tenant to use specific public IPs. I know how to limit the number of the floating IPs for each tenant using quotas, Although quotas does not allowed me to restrict the users to only use specific range of floating ips. Any idea how to set custom range of floating IPs for each tenant?

edit retag flag offensive close merge delete

2 answers

Sort by ยป oldest newest most voted
0

answered 2015-02-02 03:02:40 -0500

amz168 gravatar image

If I create the router as well for the tenant, and restrict them from creating routers. Will this work ?

edit flag offensive delete link more
2

answered 2015-02-01 16:04:18 -0500

This can not be done currently the way you want to do it.

What you can do is restrict regular users from creating floating IPs via policy.json.

/etc/neutron/policy.json ( "create_floatingip": "rule:regular_user" ).

Then you can create (allocate) the floating IPs that you want to each tenant and those are the only FIPs that the tenant can use.

The other problem that you might run in to is that during the creation of a router, the router needs a FIP for doing snat and will try to create FIP from the available pool and it might fail if you change create_foatingip to admin.

edit flag offensive delete link more

Comments

good changing policy.json did the trick, many thanks for your help

amz168 gravatar imageamz168 ( 2015-02-02 03:59:23 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2015-02-01 01:45:56 -0500

Seen: 1,067 times

Last updated: Feb 01 '15