Cluster security groups

Registered by Sergey Lukjanov

Sahara should create security groups in OpenStack with only rules needed by Hadoop.

At least Sahara should ensure that tenant contains security group with open ports needed for the Hadoop cluster.

The best case is to support both approaches by the config option in Sahara to be able to ensure good security group for running clusters in OpenStack tenant (good for testing purpose) and to create security group for each new cluster with only needed open ports.

Blueprint information

Status:
Complete
Approver:
Sergey Lukjanov
Priority:
Medium
Drafter:
Sergey Lukjanov
Direction:
Approved
Assignee:
Andrew Lazarev
Definition:
Approved
Series goal:
Accepted for juno
Implementation:
Implemented
Milestone target:
milestone icon 2014.2
Started by
Alexander Ignatov
Completed by
Sergey Lukjanov

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:bp/cluster-secgroups,n,z

Addressed by: https://review.openstack.org/107528
    Added ability to specify security group for node group

Addressed by: https://review.openstack.org/107170
    Spec for security groups management in Sahara

Addressed by: https://review.openstack.org/109394
    Added ability to create security group automatically

Addressed by: https://review.openstack.org/110517
    Updated docs with security group management feature

Addressed by: https://review.openstack.org/110518
    Implemented get_open_ports method for vanilla hadoop2

Gerrit topic: https://review.openstack.org/#q,topic:fix-sg,n,z

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.