How to isolate the tenants in terms of floating IPs?
I have a juno multinode setup (Neutron Network) with two tenants with tenant networks : Tenant A : 10.40.0.0/24 Tenant B : 10.50.0.0/24 Tenant network type is GRE. My external network is 192.168.1.0/24 (Flat). Now when I attach a floating IP to the tenants from this pool to the tenant instances, the VMs of different tenants are able to ping to each other. How can I achieve this kind of isolation for the tenants (except from security groups) ? Please help..
what's wrong with security groups?
multiple floating pools, firewall, security groups, floating IP's are 'Public' and are supposed to be reachable usually for some service to be accessible outside of the host only network.