Wednesday, 2017-03-29

« Tuesday, 2017-03-28 Index Thursday, 2017-03-30 »
*** reedip has quit IRC00:25
*** hoangcx has joined #openstack-fwaas00:45
*** cuongnv has joined #openstack-fwaas01:09
*** amotoki has joined #openstack-fwaas01:46
*** amotoki has quit IRC01:58
*** yamamoto has joined #openstack-fwaas02:29
*** reedip has joined #openstack-fwaas02:31
*** yamamoto has quit IRC02:33
*** amotoki has joined #openstack-fwaas03:00
*** yushiro has joined #openstack-fwaas04:02
*** vks1 has joined #openstack-fwaas04:15
*** vks1 has left #openstack-fwaas04:16
*** reedip has quit IRC04:17
*** vks1 has joined #openstack-fwaas04:17
*** reedip has joined #openstack-fwaas04:19
*** vks1 has quit IRC04:55
*** obre_ has joined #openstack-fwaas05:06
*** obre has quit IRC05:07
reedipvks1 , yushiro : http://paste.openstack.org/show/604610/05:07
reedipI would like to take up neutron-lib05:08
reedipyushiro : maybe you can take neutronclient , if you like , and maybe vks1 can take neutron-fwaas05:08
yushiroreedip, sure.05:08
yushiroreedip: neutron-lib,  vks1: neutron-fwaas,  yushiro: python-neutronclient05:09
reedipvks1 : let us know in case of any issues05:09
reedip:)05:09
yushiroThanks for your summary!05:09
reedipIt was nothing, and maybe I missed something... which I guess you would find05:10
reedipyushiro , vks1 : BTW as neutron-fwaas scnearios can fail if we directly change public to shared05:10
reediptherefore I propose first adding shared as an attribute05:10
reedipin neutron-lib and fwaas05:11
*** vks1 has joined #openstack-fwaas05:11
reedipand then removing public from fwaas first and then from neutron-lib05:11
vks1hi05:13
yushiroreedip, Sure.  all of these patch should be named 'bug/1676922' for https://bugs.launchpad.net/neutron/+bug/167692205:14
openstackLaunchpad bug 1676922 in neutron "changing Public attribute in FWaaS" [Medium,New] - Assigned to Reedip (reedip-banerjee)05:14
reedipagreed05:14
reedipvks1 : any suggestions ?05:16
vks1reedip I just got last 3 lines of conversation :)05:17
reedip<reedip> vks1 , yushiro : http://paste.openstack.org/show/604610/05:17
reedip<reedip> I would like to take up neutron-lib05:17
reedip<reedip> yushiro : maybe you can take neutronclient , if you like , and maybe vks1 can take neutron-fwaas05:17
reedip<yushiro> reedip, sure.05:17
reedip<yushiro> reedip: neutron-lib,  vks1: neutron-fwaas,  yushiro: python-neutronclient05:17
reedip<reedip> vks1 : let us know in case of any issues05:17
reedip<reedip> :)05:17
reedip<yushiro> Thanks for your summary!05:17
reedip<reedip> It was nothing, and maybe I missed something... which I guess you would find05:17
reedip<reedip> yushiro , vks1 : BTW as neutron-fwaas scnearios can fail if we directly change public to shared05:17
reedip<reedip> therefore I propose first adding shared as an attribute05:17
reedip<reedip> in neutron-lib and fwaas05:17
yushiroreedip, Regarding neutron-lib and python-neutronclient,  let's add 'Depends-On: <change-id>' in commit message.05:17
reedip<reedip> and then removing public from fwaas first and then from neutron-lib05:17
reedip<vks1> hi05:17
reedip<yushiro> reedip, Sure.  all of these patch should be named 'bug/1676922' for https://bugs.launchpad.net/neutron/+bug/167692205:17
openstackLaunchpad bug 1676922 in neutron "changing Public attribute in FWaaS" [Medium,New] - Assigned to Reedip (reedip-banerjee)05:17
reedip<openstack> Launchpad bug 1676922 in neutron "changing Public attribute in FWaaS" [Medium,New] - Assigned to Reedip (reedip-banerjee)05:17
reedipThere ^^05:17
reedipyushiro : yes , agreed05:17
vks1reedip yeah05:17
yushiro:)05:18
vks1reedip ok so I will start adding 'shared' attribute . this is 'boolean' attr ?05:19
reedipvks1 : yes , just like Public05:19
reedipin clearer terms, you need to migrate the Public Attribute to Shared Attribute05:19
vks1reedip ok05:20
vks1this will be only for v2 or v1 also ??05:20
reedipvks1 : only v205:24
reedipv1 will be deprecated so no point of moving forward on that right now05:24
vks1ok05:24
reedipyushiro : this might impact midonet implementation, so I will drop a small mail on the ML to inform that FWaaS would be moving from Public Attribute to Shared attribute05:24
reedipfor v205:24
yushiroreedip, thanks.05:28
reedipyushiro : glad to help :)05:29
yushiroIn order to handle networking-midonet behavior, I'll push noop patch into networking-midonet.05:29
yushirosorry, s/handle/realize05:30
reedipok yushiro :)05:32
*** yamamoto has joined #openstack-fwaas05:35
*** yamamoto has quit IRC05:40
*** reedip has quit IRC05:54
*** reedip has joined #openstack-fwaas06:01
cuongnvreedip, remember my error yesterday? it's happening on gate now06:20
cuongnvhttp://logs.openstack.org/45/438445/7/check/gate-neutron-fwaas-python27-ubuntu-xenial/c7a0fa7/console.html this one for my ps06:21
reedipumm WHAT06:22
reediplink06:22
reedipthanks, lemme look at it06:22
cuongnvsame with ps of Cedric https://review.openstack.org/#/c/449610/06:22
reedipwere you able to solve it?06:22
cuongnvnope06:23
* cuongnv reading this https://review.openstack.org/#/c/450923/06:23
reedipOkay checking06:23
cuongnvseems related06:23
reedipprobably06:24
reediptaking it up06:25
cuongnvcool06:28
reedipthanks for the infor cuongnv06:28
reedipi think 450923 should be sufficient to fix this06:29
reediplets wait for that patch to merge and then rebase 43844506:29
cuongnvyeah, let's see06:29
*** yamamoto has joined #openstack-fwaas06:41
*** yamamoto has quit IRC06:47
reedipvks1 , yushiro : please add me in your code commits for the migration07:34
reedipI havedropped the email on the ML07:34
yushiroreedip, sure.  I'll add you as 'co-authored-by'07:35
reedipnoooo ... I am not the author .. you are :) Just add me as a reviewer .... if I actually change that patch with something constructive, then it can be co-authoered by ... but if I am not working on that patch, it doesnt make much sense :)07:36
*** yamamoto has joined #openstack-fwaas07:43
reedipyushiro, vks1 : https://review.openstack.org/45122907:46
reedipputting -1 and awaiting changes in neutron-fwaas07:47
yushiroreedip, amazing speed :)07:47
reedipnaah, grep -rl and sed :)07:47
yushiroaha :)07:47
*** yamamoto has quit IRC07:48
reedipcan work in lib, and aybe in other places07:48
reedipgrep -rl "public" DIR | xargs sed 's/public/shared/g'07:48
*** mickeys has quit IRC07:59
bbbzhaoHi guys, is there any case that set the ingress fw_policy and egress fw_policy with the same fw_policy ? deny any? :)08:45
*** yamamoto has joined #openstack-fwaas08:45
*** yamamoto has quit IRC08:50
reedipmeans08:53
bbbzhaoI found fw_group can be set like that. I'm not sure it's a vaild operation or any use cases about that.08:58
reedipbbbzhao ; they can, cant they ?08:59
reedipwhy cant it be valid :)08:59
*** mickeys has joined #openstack-fwaas08:59
reedipso you are creating one filrewall policy as deny IPv4, and then associate it with ingress and egress09:00
reedipor a better example bbbzhao : suppose you want to schedule the firewalls :D09:00
reedipso you want complete access to , say , facebook from 12:00 PM to 1:00 PM everyday09:01
reedipbut you dont want any external machine to access your VM09:01
reedipthen the Ingress and Egress policies would be DENY for 1:00 PM to 12:00 PM next day, and from 12:00 PM to 1:00 PM it would be DENY Ingress, Allow Egress :)09:01
bbbzhaoreedip, cause it contain the same fw_rule..The rule like src X.X.X.X access in ingress traffic, in egress traffic also.. I just think the deny action is OK. But others ..hm I'm not sure.09:02
reedipbut I think the Source is optional, isnt it ?09:03
bbbzhaoYeah. But we cannot control users to not set them.09:03
bbbzhaoI mean if there is a rule like that ..09:04
*** mickeys has quit IRC09:04
bbbzhaoreedip, just a question about that. :). You said the deny action case is make sense.09:12
reedipmakes sense to for now09:15
*** vks1 has quit IRC09:16
*** vks1 has joined #openstack-fwaas09:16
*** reedip has quit IRC09:34
*** vks1 has quit IRC09:36
*** reedip has joined #openstack-fwaas09:37
*** amotoki has quit IRC09:40
*** reedip has quit IRC09:43
*** yamamoto has joined #openstack-fwaas09:46
*** reedip has joined #openstack-fwaas09:48
*** vks1 has joined #openstack-fwaas09:51
*** yamamoto has quit IRC09:52
*** mickeys has joined #openstack-fwaas10:00
*** reedip has quit IRC10:01
*** mickeys has quit IRC10:04
*** amotoki has joined #openstack-fwaas10:16
*** amotoki has quit IRC10:17
*** cuongnv has quit IRC10:21
*** amotoki has joined #openstack-fwaas10:31
*** amotoki has quit IRC10:40
*** hoangcx has quit IRC10:43
*** yamamoto has joined #openstack-fwaas10:48
*** yamamoto has quit IRC10:54
*** reedip has joined #openstack-fwaas10:58
*** mickeys has joined #openstack-fwaas11:01
*** mickeys has quit IRC11:05
*** yamamoto has joined #openstack-fwaas11:09
*** amotoki has joined #openstack-fwaas11:11
*** yamamoto has quit IRC11:19
*** vks1 has quit IRC11:42
*** yamamoto has joined #openstack-fwaas12:20
*** yamamoto has quit IRC12:25
*** reedip has quit IRC12:52
*** mickeys has joined #openstack-fwaas12:58
*** mickeys has quit IRC13:02
*** yamamoto has joined #openstack-fwaas13:22
*** yamamoto has quit IRC13:28
*** vks1 has joined #openstack-fwaas13:34
*** vks1 has quit IRC13:40
*** vks1 has joined #openstack-fwaas13:55
*** reedip has joined #openstack-fwaas14:00
*** yamamoto has joined #openstack-fwaas14:24
*** yamamoto has quit IRC14:29
xgermanvery happy that the public/shared has been worked out ;-)14:36
*** amotoki has quit IRC14:56
*** mickeys has joined #openstack-fwaas15:18
*** mickeys_ has joined #openstack-fwaas15:22
*** mickeys has quit IRC15:23
*** yamamoto has joined #openstack-fwaas15:26
*** yamamoto has quit IRC15:31
reedip:)15:40
*** amotoki has joined #openstack-fwaas15:57
*** amotoki has quit IRC16:03
*** yamamoto has joined #openstack-fwaas16:27
*** yamamoto has quit IRC16:33
*** mickeys_ has quit IRC16:51
*** amotoki has joined #openstack-fwaas16:59
*** amotoki has quit IRC17:04
*** mickeys has joined #openstack-fwaas17:23
*** yamamoto has joined #openstack-fwaas17:29
*** vks1 has quit IRC17:30
*** yamamoto has quit IRC17:35
*** vishwanathj has joined #openstack-fwaas17:58
*** amotoki has joined #openstack-fwaas18:00
*** amotoki has quit IRC18:05
*** yamamoto has joined #openstack-fwaas18:31
*** yamamoto has quit IRC18:36
*** openstackstatus has joined #openstack-fwaas18:44
*** ChanServ sets mode: +v openstackstatus18:44
*** amotoki has joined #openstack-fwaas19:01
*** amotoki has quit IRC19:05
*** yamamoto has joined #openstack-fwaas19:32
*** yamamoto has quit IRC19:38
*** amotoki has joined #openstack-fwaas20:02
*** amotoki has quit IRC20:06
*** yamamoto has joined #openstack-fwaas20:34
*** yamamoto has quit IRC20:40
*** amotoki has joined #openstack-fwaas21:02
*** amotoki has quit IRC21:07
*** yamamoto has joined #openstack-fwaas21:36
*** yamamoto has quit IRC21:42
*** amotoki has joined #openstack-fwaas22:03
*** amotoki has quit IRC22:08
*** yamamoto has joined #openstack-fwaas22:38
*** yamamoto has quit IRC22:42
*** reedip has quit IRC22:51
*** amotoki has joined #openstack-fwaas23:04
*** amotoki has quit IRC23:09
*** reedip has joined #openstack-fwaas23:26
*** reedip has quit IRC23:31
*** yamamoto has joined #openstack-fwaas23:39
*** yamamoto has quit IRC23:44
*** reedip has joined #openstack-fwaas23:45
*** reedip has quit IRC23:54
« Tuesday, 2017-03-28 Index Thursday, 2017-03-30 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!