Enable setting default rules for default security group

Registered by Yufang Zhang

Currently, no rules are added when default security group is created. Thus instances could only be accessed by instances from the same group, as long as you don't modify the default security group or use another one.

Nova should provide a hook mechanism to add customized rules when creating default security groups, so that we don't have to remind users to modify default security group at the first time they create instances.

HP Could which is built on openstack now permits instances be sshed or pinged in the default security group. This should be the case.

Blueprint information

Status:
Complete
Approver:
Vish Ishaya
Priority:
Medium
Drafter:
Yufang Zhang
Direction:
Approved
Assignee:
Morgan Fainberg
Definition:
Approved
Series goal:
Accepted for grizzly
Implementation:
Implemented
Milestone target:
milestone icon 2013.1
Started by
Vish Ishaya
Completed by
Vish Ishaya

Related branches

Sprints

Whiteboard

This is a great feature, but it needs an assignee. --Vish

Gerrit topic: https://review.openstack.org/#q,topic:bp/default-rules-for-default-security-group,n,z

Addressed by: https://review.openstack.org/21396
    Default sg rules for the Security Group "Default"

Addressed by: https://review.openstack.org/22238
    create new cidr type for data storage

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.