14:00:07 <SridarK> #startmeeting fwaas
14:00:08 <openstack> Meeting started Thu Apr 26 14:00:07 2018 UTC and is due to finish in 60 minutes.  The chair is SridarK. Information about MeetBot at http://wiki.debian.org/MeetBot.
14:00:09 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
14:00:12 <openstack> The meeting name has been set to 'fwaas'
14:00:19 <SridarK> #chair yushiro xgerman_
14:00:23 <openstack> Current chairs: SridarK xgerman_ yushiro
14:00:25 <njohnston> o/
14:00:27 <yushiro> Hi all :)
14:00:36 <SridarK> yushiro: hi - i think ur turn today
14:00:43 <yushiro> SridarK, sure!
14:00:56 <yushiro> OK folks, let's begin :)
14:01:12 <yushiro> #topic announcements
14:01:40 <xgerman_> o/
14:01:44 <yushiro> Good news about OpenStack summit Vancouver's forum.
14:02:32 <yushiro> Our fwaas L7 session has approved.
14:02:41 <SridarK> annp: congrats
14:02:47 <xgerman_> +1
14:02:54 <yushiro> I forgot a link... annp, Do you have some link?
14:03:52 <SridarK> #link http://forumtopics.openstack.org/cfp/details/144
14:03:56 <SridarK> ?
14:04:23 <SridarK> i think not
14:04:35 <SridarK> that was the submission
14:04:36 <yushiro> SridarK, Hmm,  it returns 404 ..
14:04:50 <SridarK> yes just saw that too
14:05:26 <yushiro> Thanks.  Anyway, let's discuss topic about our forum later :)
14:05:43 <SridarK> but that is good that
14:05:48 <SridarK> it was accepted
14:06:07 <SridarK> sorry go ahead yushiro
14:06:14 <yushiro> OK
14:06:19 <doude> Hi
14:06:48 <yushiro> We are now Rocky-2 cycle.  R-2 is until 4th Jun.  https://releases.openstack.org/rocky/schedule.html
14:07:16 <yushiro> So, anything else to announce?
14:07:28 <xgerman_> TC elections are open — so if you got an e-mail make sure to vote
14:07:35 <yushiro> doude, hi
14:07:57 <yushiro> aha, yes, thanks xgerman_
14:09:16 <yushiro> OK, so next topic.
14:09:25 <yushiro> #topic Rocky
14:09:54 <yushiro> Pluggable backend driver https://review.openstack.org/#/c/480265/
14:10:10 <yushiro> doude, Hi.  It's your turn :)
14:12:37 <doude> yes sorry
14:13:16 <doude> so I just started to look at the issue for the port auto association to default FG
14:13:30 <doude> I've a patch, I 'm just finishing to validate unit tests
14:13:43 <doude> I also rebase the patch on master
14:13:43 <yushiro> OK, good
14:14:03 <doude> I'll push new patch set in the hour
14:14:51 <yushiro> wow, cool.  I'll test tomorrow with 'nova boot' command and check default fwg association again.
14:14:53 <doude> just a question, that specific port association is only in case a port is automatically associated to the default FG?
14:16:35 <yushiro> doude, auto association target is VM port (newly created or bind)
14:17:04 <yushiro> And it is associated with default fwg.
14:17:06 <doude> if we create a port not binded to a host, and associating that port to FG, do we just need to set the association in the DB and don't send RPC FG update ?
14:17:24 <doude> ha ok it's only for port VM
14:17:31 <doude> understood
14:17:44 <yushiro> If we try to associate non-bind port with any fwg, it returns 409 error.
14:17:50 <yushiro> Aha, Ok.
14:17:52 <doude> ok
14:17:55 <doude> thanks
14:19:05 <yushiro> So, doude, if you update your patch, please check the q-agt.service log while running 'nova boot'.  If there is no 'error' message and FWG is associated with a port, it is good.
14:19:33 <yushiro> Of course, I'll test as well :)
14:19:38 <doude> oterwise, I did not had time to discuss with NSX dev about their FWaaS driver
14:19:55 <doude> sure yushiro
14:20:13 <SridarK> doude: ok it will be good to close on the NSX driver too
14:20:13 <doude> I was able to reproduce and see that error before I patch the code
14:20:18 <SridarK> i think it should be o
14:20:20 <SridarK> k
14:20:27 <doude> yes me to SridarK
14:20:34 <SridarK> maybe just needs clarification
14:20:38 <SridarK> thx doude
14:21:06 <yushiro> doude, In addition, current devstack is a little strange.  Please set [fwaas]firewall_l2_driver = ovs at /etc/neutron/l3_agent.ini not /etc/neutron/plugins/ml2/ml2_conf.ini
14:21:36 <yushiro> Latter case wasn't loaded correctly.
14:22:17 <yushiro> OK, next
14:22:22 <yushiro> WIP] Adds remote firewall group: https://review.openstack.org/521207
14:22:38 <yushiro> xgerman_, go ahead :p
14:22:50 <doude> thanks yushiro
14:22:51 <xgerman_> not much to report.
14:22:58 <yushiro> OK
14:23:02 <xgerman_> Need yo make the gates work for my patch
14:23:17 <xgerman_> there have been gate issues the pas few weeks in OpenStack
14:23:30 <yushiro> wow :(
14:24:00 <xgerman_> yeah, from pip versions, to neutron purging FKs, etc.
14:24:22 <reedip> hey hi guys
14:24:26 <yushiro> xgerman_, Ahhhh, Yes, I remembered..
14:24:39 <njohnston> hi reedip
14:24:43 <yushiro> reedip, Hi!
14:25:02 <reedip> I was able to join the meeting atlast :)
14:25:09 <yushiro> reedip, cool!!
14:25:10 <xgerman_> o/
14:25:22 <SridarK> reedip: long time, hi :-)
14:25:22 <reedip> o/
14:25:40 <reedip> yes, was pretty messed up with the work and other activities :|
14:25:57 <SridarK> :-)
14:26:33 <yushiro> Good news! I wanted to announce about that in announce topic :p
14:26:46 <yushiro> OK, next
14:26:54 <yushiro> Logging for FWaaS(SPEC): https://review.openstack.org/#/c/509725/
14:27:23 <SridarK> Sorry i forgot earlier but it looks good to me too
14:27:31 <SridarK> and i added Miguel for +A
14:27:31 <yushiro> Thanks for your review SridarK
14:28:01 <yushiro> good :)  In addition, your comment is reasonable to start L3 first.
14:28:23 <yushiro> Thanks cuong for update.
14:29:11 <njohnston> +1
14:29:23 <yushiro> and thanks for all reviewing :)
14:29:39 <yushiro> #topic Horizon support
14:30:13 <yushiro> Today, chandan and Sarath are not here.
14:30:37 <SridarK> Yes, i will send a note to them to see if they can join next week
14:30:52 <yushiro> SridarK, OK, thanks.
14:32:01 <yushiro> #topic bugs
14:32:07 <yushiro> http://urx2.nu/C7UI
14:33:00 <yushiro> There are 13 bugs are 'UNDECIDED' status.
14:33:36 <xgerman_> time for a bug scrub?
14:33:45 <reedip> any assigned to me ?? :P
14:33:56 <SridarK> +1 on bug scrub
14:34:02 <reedip> +1 for the bug scrub
14:34:06 <yushiro> xgerman_, GOOD!
14:34:18 <SridarK> maybe we can run thru this after we take a look offline
14:34:27 <SridarK> and update them
14:34:29 <xgerman_> +1
14:34:35 <yushiro> https://bugs.launchpad.net/neutron/+bug/1618244
14:34:36 <openstack> Launchpad bug 1618244 in neutron "Possible scale issues with neutron-fwaas requesting all tenants with firewalls after RPC failures" [Undecided,In progress] - Assigned to Bertrand Lallau (bertrand-lallau)
14:34:39 <reedip> I will look at them a bit tomorrow morning ( I have some bandwidth tomorrow )
14:35:24 <SridarK> somehow i recall some work on this area done maybe by Cedric ?
14:35:29 <SridarK> i am a bit foggy
14:36:21 <yushiro> SridarK, OK
14:37:29 <yushiro> It seems to be backported to ocata
14:38:19 <yushiro> I'll set 'low' for now.
14:38:31 <xgerman_> k
14:39:08 <SridarK> yes that seemed quite familiar
14:39:14 <yushiro> https://bugs.launchpad.net/neutron/+bug/1626642
14:39:16 <openstack> Launchpad bug 1626642 in neutron "Cleanup and add more UT for FWaaS v2 plugin" [Undecided,Confirmed] - Assigned to Sridar Kandaswamy (skandasw)
14:39:33 <yushiro> It's you, SridarK :)
14:39:52 <SridarK> let me look to see if that is relevant
14:40:01 <yushiro> Ok
14:40:06 <njohnston> brb
14:40:17 <SridarK> i recall we had some coverage needed for rule updates
14:40:32 <SridarK> but will take a look
14:40:57 <yushiro> Aha.  OK, so, I'll set medium.
14:41:17 <yushiro> https://bugs.launchpad.net/neutron/+bug/1656754
14:41:19 <openstack> Launchpad bug 1656754 in neutron "Fwaas (bind a firewall to DVR router when its floating-ip count is zero): the firewall rules does not take effect for a VM after binding a floating ip to the VM." [Undecided,New] - Assigned to wujun (wujun)
14:43:03 <yushiro> I think this is about fwaas v1.
14:43:52 <SridarK> yushiro: most likely will need to look
14:46:17 <yushiro> OK, there are many bugs.  Let's continue next week.
14:46:25 <SridarK> yushiro: +1
14:46:33 <xgerman_> +1
14:46:34 <SridarK> we can do some digging on the list offline
14:46:43 <yushiro> yeah
14:46:57 <yushiro> #topic specs
14:47:04 <reedip> Lets put a google doc for it ?
14:47:41 <yushiro> fwaas 2.0 address groups support https://review.openstack.org/557137
14:48:30 <wkite> I have committed a new proposafor e
14:48:42 <wkite> sorry
14:49:29 <yushiro> reedip, about bug?
14:50:20 <wkite> I have committed a new spec to the gerrit.
14:50:51 <yushiro> wkite, OK, could you paste a link for the spec??
14:51:11 <wkite> i modified some inappropriate places.
14:52:13 <yushiro> Ah, you updated existing spec, did you?
14:52:38 <wkite> http://logs.openstack.org/37/557137/4/check/build-openstack-sphinx-docs/3c4e754/html/specs/rocky/fwaas-2.0-address-groups-support.html
14:53:00 <wkite> yushiro: yes
14:53:19 <yushiro> I cannot review last week, so I'll review tomorrow.
14:53:36 <yushiro> s/cannot/couldn't
14:53:43 <SridarK> wkite: thx i see u have addressed most comments - i think - will go thru again also
14:54:08 <wkite> yushiro: thanks for your review
14:55:03 <yushiro> :)
14:55:20 <yushiro> Ah, 5 minutes left !! :p
14:55:21 <wkite> SridarK: thx
14:55:31 <SridarK> wkite: np
14:55:41 <yushiro> Everyone, plz review his spec :)
14:55:46 <xgerman_> +1
14:55:51 <yushiro> #topic Open Discussion
14:56:56 <yushiro> I'll take a holiday from 28th Apr. to 6th May  a.k.a "Golden week".
14:57:26 <SridarK> yushiro: have a nice break
14:57:28 <yushiro> If you'd like to ask me something, please send e-mail <y.furukawa8@gmail.com>
14:57:43 <yushiro> SridarK, Yeah, thanks.
14:58:32 <amotoki> stable/queens fwaas-dashboard gate is broken now. the fix is here: https://review.openstack.org/#/c/564523/ please take a look.
14:58:52 <yushiro> amotoki, Thank you so much
14:59:11 <SridarK> +1
14:59:41 <yushiro> I need more time to contribute on OpenStack!!  :p
15:00:01 <SridarK> yushiro: ah yes same here
15:00:05 <SridarK> :-)
15:00:07 <xgerman_> +1 —
15:00:16 <yushiro> Same feeling :)
15:00:20 <SridarK> oh time
15:00:23 <yushiro> Ok, this is time.
15:00:28 <yushiro> #endmeeting