Cluster security groups
Sahara should create security groups in OpenStack with only rules needed by Hadoop.
At least Sahara should ensure that tenant contains security group with open ports needed for the Hadoop cluster.
The best case is to support both approaches by the config option in Sahara to be able to ensure good security group for running clusters in OpenStack tenant (good for testing purpose) and to create security group for each new cluster with only needed open ports.
Blueprint information
- Status:
- Complete
- Approver:
- Sergey Lukjanov
- Priority:
- Medium
- Drafter:
- Sergey Lukjanov
- Direction:
- Approved
- Assignee:
- Andrew Lazarev
- Definition:
- Approved
- Series goal:
- Accepted for juno
- Implementation:
- Implemented
- Milestone target:
- 2014.2
- Started by
- Alexander Ignatov
- Completed by
- Sergey Lukjanov
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
Added ability to specify security group for node group
Addressed by: https:/
Spec for security groups management in Sahara
Addressed by: https:/
Added ability to create security group automatically
Addressed by: https:/
Updated docs with security group management feature
Addressed by: https:/
Implemented get_open_ports method for vanilla hadoop2
Gerrit topic: https:/