[ovirt-users] Firewall?

Livnat Peer lpeer at redhat.com
Thu Jun 5 08:53:34 UTC 2014


I'm adding Moti to provide the details

On 06/05/2014 11:34 AM, Gianluca Cecchi wrote:
> On Thu, Jun 5, 2014 at 10:02 AM, Livnat Peer <lpeer at redhat.com
> <mailto:lpeer at redhat.com>> wrote:
> 
>     [snip]
> 
>  
> 
> 
>     The security group is configured per VM, the rules are configured by the
>     system on the node the VM is running on.
> 
>     From the user perspective you need to configure a security group policy
>     and then associate the VM with the relevant policy, there is also a
>     default policy to which all VMs are associated by default.
> 
>     To use this feature you need to use the oVirt-Neutron integration -
>     http://www.ovirt.org/Features/Detailed_OSN_Integration#Security_groups
> 
> 
> How can I set more than one custom device property?
> 
> For example in my case when I had to use extnet I lose the security
> groups one...
> 
> before
> [root at tekkaman ovirt-engine]# engine-config -g CustomDeviceProperties
> CustomDeviceProperties:  version: 3.0
> CustomDeviceProperties:  version: 3.1
> CustomDeviceProperties:  version: 3.2
> CustomDeviceProperties:  version: 3.3
> CustomDeviceProperties:
> {type=interface;prop={SecurityGroups=^(?:(?:[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12},
> *)*[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}|)$}} version: 3.4
> 
> then
> [root at tekkaman ovirt-engine]# engine-config -s
> CustomDeviceProperties='{type=interface;prop={extnet=^[a-zA-Z0-9_ ---]+$}}'
> Please select a version:
> 1. 3.0
> 2. 3.1
> 3. 3.2
> 4. 3.3
> 5. 3.4
> 5
> 
> after:
> [root at tekkaman ovirt-engine]# engine-config -g CustomDeviceProperties
> CustomDeviceProperties:  version: 3.0
> CustomDeviceProperties:  version: 3.1
> CustomDeviceProperties:  version: 3.2
> CustomDeviceProperties:  version: 3.3
> CustomDeviceProperties: {type=interface;prop={extnet=^[a-zA-Z0-9_
> ---]+$}} version: 3.4
> 
> # systemctl restart ovirt-engine
> 
> What is the syntax to add extnet without deleting security groups one?
> 
> Thanks
> Gianluca




More information about the Users mailing list