All traffic is denied by default. OpenStack security groups API is modeled to reflect what AWS does. You may find your needs better served by fwaas plugin for neutron that is not constrained by AWS compatibility.
Ihar On Sun, Apr 23, 2017 at 8:33 PM, 田明明 <[email protected]> wrote: > Can we add an "action" to security group rule api, so that we could dispatch > rules with "deny" action? Until now, security group only supports add > white-list rules but this couldn't satisfy many people's needs. > > > > > > > > > > > > > > > > > > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: [email protected]?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: [email protected]?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
