Ask Your Question

Revision history [back]

iptables rule in controller blocking the LBAAS functionality!


I have liberty rdo setup up and running. I recently added the LBAAS component to the existing working setup but the LBAAS is not working as expected. I can reach the LBAAS VIP from the VM I have added in the pool. But unable to reach the LBAAS from the router and anywhere.

After analysing we found the below Iptables rules were blocking the traffic to LBAAS VIP.

Chain neutron-linuxbri-sg-fallback (2 references)
num  target     prot opt source               destination
1    DROP       all  --  anywhere             anywhere             / Default drop rule for unmatched traffic. /

Once I remove the above iptable chain then everything working fine. This same chain recreated when I restart the neutron services.

Can anyone help me with any suggestion? Do I wanna add any new iptables rule manually for using LBAAS in openstack controller?