review.fuel-infra Code Review - openstack-build/neutron-build.git/commit

]> review.fuel-infra Code Review - openstack-build/neutron-build.git/commit

Code Review / openstack-build / neutron-build.git / commit

author	Kevin Benton <blak111@gmail.com>
	Mon, 5 Oct 2015 14:26:09 +0000 (07:26 -0700)
committer	Kevin Benton <blak111@gmail.com>
	Tue, 6 Oct 2015 21:31:54 +0000 (14:31 -0700)
commit	9f620772f0097156858255687ed97128ef666825
tree	506378aee30069645e869cfed5565aeb3a6f8f12	tree \| snapshot
parent	b10e3bc46fa5f5e870c84b65b672e2fb69cc2b4b	commit \| diff

Fix rule generation for single and all host rules

iptables outputs single-host rules with a prefix on the
end (/32 or /128) and completely omits /0 rules since they
allow everything.

This patch fixes our rule generation to match that pattern
so iptables counters don't get destroyed on these rules on
every reload.

Closes-Bug: #1502917
Change-Id: Ifbdfbafd6cf37c6ef7385cd5f1d2df65cc19797a

neutron/agent/linux/iptables_firewall.py		diff \| blob \| history
neutron/tests/unit/agent/linux/test_iptables_firewall.py		diff \| blob \| history

RSS Atom