OpenStack 내에서 Security Group 을 사용하지 않을 경우
On each controller and compute node, change:
# /etc/neutron/plugins/ml2/ml2_conf.ini
[securitygroup]
enable_security_group = False
firewall_driver = neutron.agent.firewall.NoopFirewallDriver
To stop nova-compute from creating the iptables rules, configure it to use its Noop driver:
# /etc/nova/nova.conf
[DEFAULT]
security_group_api = nova
firewall_driver = nova.virt.firewall.NoopFirewallDriver
Restart all neutron-server, neutron-openvswitch-agent, nova-api and nova-compute services.
:: 네트워크 노드 (여기서는 Controller내에 네트워크 노드가 존재)
root@controller:~# vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[securitygroup]
enable_security_group = False
root@controller:~# service neutron-plugin-linuxbridge-agent restart
