Couldn't you achieve the same goal with egress security rules? Without SNAT enabled, those instances wouldn't be able to reach the Internet at all, so no package updates, etc. On 18 May 2015 05:13, "Simone Spinelli" <simone.spine...@gmail.com> wrote:
> Hi all, > > by default neutron routers have source nat enabled and they masquerade > using the external ip address: you can disable this function using API once > the router is created. > Is there a way to disable this function by default (I mean create routers > with source nat disabled )? > > Any help is appreciated. > > Best regards > > Simone > > _______________________________________________ > Mailing list: > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack@lists.openstack.org > Unsubscribe : > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > >
_______________________________________________ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post to : openstack@lists.openstack.org Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
