[Yahoo-eng-team] [Bug 1911126] [NEW] [RFE][L3] add ability to control router SNAT more granularly

[LIU Yulong]

Public bug reported:

Neutron router now supports SNAT when the attribute ``enable_snat`` of the 
gateway is set to True.
This will enable all the VMs which has no binding floating IP to access the 
public world.

But, generally the DataCenter bandwidths for cloud providers are not free. And 
some users may want to buy a higher
SNAT bandwidth for one of their VMs, a CIDR, or a subnet.

So for Neutron, it should support these scenarios:
1. enable/disable SNAT once for all (supported, controlled by ``enable_snat``)
2. enable/disable SNAT for one internal IP (of VM)
3. enable/disable SNAT for a range CIDR of IPs
4. enable/disable SNAT for a subnet

For 2., 3. and 4. scenario should have QoS support.

So I would like to add a new mechanism for Neutron to support these:
1. An new API extension to add specific SNAT type
2. An new L3 agent extension to install SNAT iptables rules.

Ideas?

** Affects: neutron
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1911126

Title:
  [RFE][L3] add ability to control router SNAT more granularly

Status in neutron:
  New

Bug description:
  Neutron router now supports SNAT when the attribute ``enable_snat`` of the 
gateway is set to True.
  This will enable all the VMs which has no binding floating IP to access the 
public world.

  But, generally the DataCenter bandwidths for cloud providers are not free. 
And some users may want to buy a higher
  SNAT bandwidth for one of their VMs, a CIDR, or a subnet.

  So for Neutron, it should support these scenarios:
  1. enable/disable SNAT once for all (supported, controlled by ``enable_snat``)
  2. enable/disable SNAT for one internal IP (of VM)
  3. enable/disable SNAT for a range CIDR of IPs
  4. enable/disable SNAT for a subnet

  For 2., 3. and 4. scenario should have QoS support.

  So I would like to add a new mechanism for Neutron to support these:
  1. An new API extension to add specific SNAT type
  2. An new L3 agent extension to install SNAT iptables rules.

  Ideas?

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1911126/+subscriptions

-- 
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to     : yahoo-eng-team@lists.launchpad.net
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help   : https://help.launchpad.net/ListHelp