[Bug 1091939] [NEW] nova-network applies too liberal a SNAT rule

Paul Collins paul.collins at canonical.com
Wed Dec 19 03:53:18 UTC 2012


Public bug reported:

Version: 2012.1.3+stable-20120827-4d2a4afe-0ubuntu1

We recently set up a new Nova cluster on precise + essex with Juju and
MaaS, and ran into a problem where instances could not communicate with
the swift-proxy node on the MaaS network.  This turned out to be due to
nova-network installing a SNAT rule for the cluster's public IP that
applied to all network traffic, not just that traffic destined to exit
towards the Internet.

This problem has been fixed upstream in
https://github.com/openstack/nova/commit/959c93f6d3572a189fc3fe73f1811c12323db857

Please consider applying this change to Ubuntu 12.04 LTS in an SRU.

** Affects: nova (Ubuntu)
     Importance: High
         Status: New

** Affects: nova (Ubuntu Precise)
     Importance: High
         Status: New


** Tags: canonistack

** Also affects: nova (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Changed in: nova (Ubuntu Precise)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nova in Ubuntu.
https://bugs.launchpad.net/bugs/1091939

Title:
  nova-network applies too liberal a SNAT rule

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nova/+bug/1091939/+subscriptions



More information about the Ubuntu-server-bugs mailing list