On 01/31/2014 11:48 AM, Howard Luckenbaugh wrote: > Is there a way around this?
Putting back the mailing list... You can create a neutron port without security enabled, then pass it to nova when booting: $ neutron port-create $NETWORK_ID --port_security_enabled False --name $PORT_ID1 $ nova boot [...] --nic port-id=$PORT_ID1 vm -Brian > From: Brian Haley <brian.ha...@hp.com> > To: Howard Luckenbaugh/Raleigh/IBM@IBMUS, openstack@lists.openstack.org, > Date: 01/28/2014 07:38 PM > Subject: Re: [Openstack] Network issue with a service entry sitting on top of > a > interface > -------------------------------------------------------------------------------- > > > > On 01/28/2014 04:22 PM, Howard Luckenbaugh wrote: >> I am having a issue with getting a second IP sitting on top of a VM eth0 to >> work. Do I have to allocate this IP in SCO first before this will work. It >> is in >> the same network as the VM IP which is working fine. > > There's anti-spoofing rules added to tap devices, it won't let anything but > your > allocated MAC and IP out. Check the iptables rules on the compute node and > you'll probably see the drop counts increasing for that port. > > -Brian > > _______________________________________________ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
