[ovirt-users] Firewall?

Gianluca Cecchi gianluca.cecchi at gmail.com
Thu Jun 5 04:34:11 EDT 2014


On Thu, Jun 5, 2014 at 10:02 AM, Livnat Peer <lpeer at redhat.com> wrote:

> [snip]
>


>
> The security group is configured per VM, the rules are configured by the
> system on the node the VM is running on.
>
> From the user perspective you need to configure a security group policy
> and then associate the VM with the relevant policy, there is also a
> default policy to which all VMs are associated by default.
>
> To use this feature you need to use the oVirt-Neutron integration -
> http://www.ovirt.org/Features/Detailed_OSN_Integration#Security_groups
>
>
How can I set more than one custom device property?

For example in my case when I had to use extnet I lose the security groups
one...

before
[root at tekkaman ovirt-engine]# engine-config -g CustomDeviceProperties
CustomDeviceProperties:  version: 3.0
CustomDeviceProperties:  version: 3.1
CustomDeviceProperties:  version: 3.2
CustomDeviceProperties:  version: 3.3
CustomDeviceProperties: {type=interface;prop={SecurityGroups=^(?:(?:[0-9a-
fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12},
*)*[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}|)$}} version: 3.4

then
[root at tekkaman ovirt-engine]# engine-config -s
CustomDeviceProperties='{type=interface;prop={extnet=^[a-zA-Z0-9_ ---]+$}}'
Please select a version:
1. 3.0
2. 3.1
3. 3.2
4. 3.3
5. 3.4
5

after:
[root at tekkaman ovirt-engine]# engine-config -g CustomDeviceProperties
CustomDeviceProperties:  version: 3.0
CustomDeviceProperties:  version: 3.1
CustomDeviceProperties:  version: 3.2
CustomDeviceProperties:  version: 3.3
CustomDeviceProperties: {type=interface;prop={extnet=^[a-zA-Z0-9_ ---]+$}}
version: 3.4

# systemctl restart ovirt-engine

What is the syntax to add extnet without deleting security groups one?

Thanks
Gianluca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ovirt.org/pipermail/users/attachments/20140605/19063201/attachment.html>


More information about the Users mailing list