]> review.fuel-infra Code Review - openstack-build/neutron-build.git/commit
Code Review / openstack-build / neutron-build.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: f2c7ee7) | patch
Adds ipset support for Security Groups
authorshihanzhang <shihanzhang@huawei.com>
Mon, 4 Aug 2014 09:31:01 +0000 (17:31 +0800)
committershihanzhang <shihanzhang@huawei.com>
Fri, 12 Sep 2014 02:18:51 +0000 (10:18 +0800)
commit2562a9271c828e982a74593e8fd07be13b0cfc4a
tree18363c3ed9209b6b9bec19c86db4879a5daa1796tree | snapshot
parentf2c7ee79420fd60b6323b086e316e5747b9e9757commit | diff
Adds ipset support for Security Groups

Iptables chain is linear storage and filtering, when iptables rules are
large, the load of l2 agent is heavy, this patch introduces ipset to
security group for improving the security group performance.

Change-Id: I6ff0ac519d0b9034d3bb5270885ed3cc1805674d
Implements: blueprint add-ipset-to-security
DocImpact
etc/neutron/plugins/ml2/ml2_conf.ini diff | blob | history
etc/neutron/rootwrap.d/ipset-firewall.filters [new file with mode: 0644] blob
neutron/agent/linux/ipset_manager.py [new file with mode: 0644] blob
neutron/agent/linux/iptables_firewall.py diff | blob | history
neutron/agent/securitygroups_rpc.py diff | blob | history
neutron/tests/unit/test_iptables_firewall.py diff | blob | history
neutron/tests/unit/test_security_groups_rpc.py diff | blob | history
setup.cfg diff | blob | history