[openstack-dev] [neutron-fwaas]Why fwaas v1 plugin automatically inserts a rule to the head of a policy if people haven't set its position manually?
Has this referenced any firewall production or it is a bug because it will cause original rules re-ordered every time? 发自我的 iPhone __ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
[openstack-dev] [Openstack][Neutron] Add "port forwording" feature to floating ip
Hi, all: I am considering adding a "port forwording" (or "port mapping") feature to floating ip. "Port forwarding" is such a feature, described as follows: when we receive a packet on a specific L4 (tcp/udp) port of a floating ip's port, we should forword the packet to another L4 (tcp/udp) port of an internal port (The internal port means one of the instance's port)。The L4 port of an internal port maybe the same or different with that of the floating ip's. A user can benefit from the "port forwording" feature when he has several applications but only has one floating ip. I am thinking to add two new api interfaces to express this feature. "PUT, /v2.0/floatingips/{floatingip_id}/add_portmapping" and "PUT, /v2.0/floatingips/{floatingip_id}/remove_portmapping". Is there anybody interested in this feature? I am expecting to your suggestions, thanks very much! __ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
[openstack-dev] [Openstack][Neutron]Why we use secuirity group which only support dispatching whiltelist rules?
Can we add an "action" to security group rule api, so that we could dispatch rules with "deny" action? Until now, security group only supports add white-list rules but this couldn't satisfy many people's needs. __ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev