I'm interested in setting up a provider firewall using nova networking. I found this spec which is basically what I want to do: https://wiki.openstack.org/wiki/Spec-provider-firewall (https://wiki.openstack.org/wiki/Spec-...)

However I could not find any documentation. It seems implemented: https://github.com/openstack/nova/blob/f75aba12a932f7b445631e2cdf6c4005d8b4c205/nova/virt/firewall.py#L269 (https://github.com/openstack/nova/blo...)

    # Pass through provider-wide drops
    ipv4_rules += ['-j $provider']
    ipv6_rules += ['-j $provider']

Not sure what $provider references. Any hints, links, etc. to help me get this setup would be great!

Thanks!