Page MenuHomePhabricator
Create Task
Maniphest T268140

Review the security groups on openstack for tools and tools-beta
Open, LowPublic
Actions

Description

Currently, for the projects tools/toolsbeta all the vms belong to the security group default, that allows any traffic between vms in the same project.

Review if that's what we want, if so we might want to remove any other security group that only handles intra-project traffic (like tools-new-k8s-full-connectivity) as they don't have any effect.

WARNING: this means that the groups might block some traffic that we need between the instances when enforced.

Event Timeline

dcaro created this task.Nov 18 2020, 2:37 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 18 2020, 2:37 PM
dcaro updated the task description. (Show Details)Nov 18 2020, 2:42 PM
Andrew renamed this task from Review the security groups on openstack to Review the security groups on openstack for tools and tools-beta.Dec 8 2020, 5:29 PM
Andrew triaged this task as Low priority.Dec 8 2020, 5:32 PM
taavi added a project: Toolforge.Nov 7 2021, 5:34 PM
fnegri edited projects, added cloud-services-team; removed cloud-services-team (Kanban).Jan 18 2023, 7:12 PM
fnegri moved this task from Kanban to Inbox on the cloud-services-team board.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits