Quantum Security Group

Registered by Akihiro Motoki on 2012-11-25

Support advanced features of Quantum security group. Quantum security group support is being implemented in Grizzly-1.
Before implementing Horizon support, we need to discuss how to use quantum security group combined with Nova.

Blueprint information

Status:
Complete
Approver:
Gabriel Hurley
Priority:
Medium
Drafter:
Akihiro Motoki
Direction:
Approved
Assignee:
Akihiro Motoki
Definition:
Approved
Series goal:
Accepted for havana
Implementation:
Implemented
Milestone target:
milestone icon 2013.2
Started by
Akihiro Motoki on 2013-01-28
Completed by
David Lyle on 2013-07-15

Related branches

Sprints

Whiteboard

The following BPs are related to this:
https://blueprints.launchpad.net/horizon/+spec/nova-net-quantum-abstraction
https://blueprints.launchpad.net/horizon/+spec/security-group-rules

Security group implementation in Quantum is a little slow, so I target it to G-3. -- amotoki (Dec 14)

I started the work on this BP. This BP will be split into three parts.
- quantum security group rule management (similar to "Access and Security" panel)
- Add/Remove security group for each port (It should be done on top of https://review.openstack.org/#/c/20446/)
- Specifying security group per vnic when VM launching
The first two items have good progress and I can upload the patch until Sunday (Feb 10) at the latest.
The last item is not sure. It requires similar mechanism to https://blueprints.launchpad.net/horizon/+spec/quantum-vnic-ordering. Since I am not familiar with JS it is my concern. -- Feb 6 amotoki

[gabriel] Given that things are moving slowly on this one and that Nova should proxy security group calls to Quantum, I'm gonna move this to the Havana release cycle. -- Feb 19

[amotoki] I just started rebased my patch in Grizzly to Havana code. Let me move it Havana-2. -- May 20

Gerrit topic: https://review.openstack.org/#q,topic:bp/quantum-security-group,n,z

Addressed by: https://review.openstack.org/36818
    Neutron Security Group native support

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information 
Everyone can see this information.