firewall policy service group's protocol is not getting updated at agent.
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Juniper Openstack |
Fix Committed
|
Undecided
|
Sachin Bansal | ||
Bug Description
#1
A Service group is created with the following tuples at WebUI.
tcp 22
icmp 0-65535
#2
Config got the following:
"display_name": "WD-Unit-Test",
"service_
"firewall_service": [
{
"protocol": "tcp",
"dst_ports": {
"end_port": 22,
"start_port": 22
},
"src_ports": {
"end_port": 65535,
"start_port": 0
}
},
{
"protocol": "icmp",
"dst_ports": {
"end_port": 65535,
"start_port": 0
},
"src_ports": {
"end_port": 65535,
"start_port": 0
}
}
]
},
"name": "WD-Unit-Test"
#3
Agent doesn't have the protocol field updated properly, hence flows/sessions won't get established.
src_port_l dst_port_l proto_l action_l src_type dst_type uuid match_condition
-0.5470737961586565
Terminal
192.168.1.3 255.255.255.255, 192.168.2.3 255.255.
-
src_port_l
min max
0
65535
0
65535
dst_port_l
min max
22
22
0
65535
proto_l
min max
0
0
0
0
action_l
action
pass
| prasad miriyala (pmiriyala) wrote | #1 |
| Changed in juniperopenstack: | |
| assignee: | Naveen N (naveenn) → Sachin Bansal (sbansal) |
| Sachin Bansal (sbansal) wrote | #2 |
| Changed in juniperopenstack: | |
| status: | New → Fix Committed |
protocol_id is expected to set by config/schema transformer, hence moved it to config.
/Prasad