Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-22 Thread Vadim Ponomarev
RP spoofing >>>>> mechanism. Example: I use security groups but I don't want to use ARP >>>>> spoofing protection. How do I can disable the protection? >>>>> >>>>> 2018-03-14 10:26 GMT+03:00 Tatiana Kholkina <holk...@selectel.ru>: >>>>&g

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-22 Thread Kevin Benton
rts. >>>>> It looks a bit complicated to me and I think it would be better to >>>>> have an ability to set default port security via config file. >>>>> >>>>> Best regards, >>>>> Tatiana >>>>> >>>>> 201

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-19 Thread Vadim Ponomarev
t security via config file. >>>> >>>> Best regards, >>>> Tatiana >>>> >>>> 2018-03-13 15:10 GMT+03:00 Claudiu Belu <cb...@cloudbasesolutions.com>: >>>> >>>>> Hi, >>>>> >>>>> Inde

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-19 Thread Kevin Benton
ault, but AFAIK, if you want it >>>> enabled for a port / network, you can simply disable the security groups on >>>> that neutron network / port. >>>> >>>> Best regards, >>>> >>>> Claudiu Belu >>>> >>>>

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-19 Thread Vadim Ponomarev
ou want it >>> enabled for a port / network, you can simply disable the security groups on >>> that neutron network / port. >>> >>> Best regards, >>> >>> Claudiu Belu >>> >>> -- >>> *From:* Татьяна Холкин

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-19 Thread Kevin Benton
work, you can simply disable the security groups on >> that neutron network / port. >> >> Best regards, >> >> Claudiu Belu >> >> -- >> *From:* Татьяна Холкина [holk...@selectel.ru] >> *Sent:* Tuesday, March 13, 2018

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-19 Thread Vadim Ponomarev
ork, you can simply disable the security groups on >> that neutron network / port. >> >> Best regards, >> >> Claudiu Belu >> >> -- >> *From:* Татьяна Холкина [holk...@selectel.ru] >> *Sent:* Tuesday, March 13, 2018 1

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-14 Thread Tatiana Kholkina
t regards, > > Claudiu Belu > > -- > *From:* Татьяна Холкина [holk...@selectel.ru] > *Sent:* Tuesday, March 13, 2018 12:54 PM > *To:* openstack-dev@lists.openstack.org > *Subject:* [openstack-dev] [neutron] Prevent ARP spoofing > > Hi, &

Re: [openstack-dev] [neutron] Prevent ARP spoofing

2018-03-13 Thread Claudiu Belu
: Tuesday, March 13, 2018 12:54 PM To: openstack-dev@lists.openstack.org Subject: [openstack-dev] [neutron] Prevent ARP spoofing Hi, I'm using an ocata release of OpenStack where the option prevent_arp_spoofing can be managed via conf. But later in pike it was removed and it was decided to prevent

[openstack-dev] [neutron] Prevent ARP spoofing

2018-03-13 Thread Татьяна Холкина
Hi, I'm using an ocata release of OpenStack where the option prevent_arp_spoofing can be managed via conf. But later in pike it was removed and it was decided to prevent spoofing by default. There are cases where security features should be disabled. As I can see now we can use a port_security