ghost
commented
7 years ago @greenpau , we currently don't support configuring the ipset list with Metro. What you see is default behavior. How would you like to see this changed?
Closed greenpau closed 4 years ago
ghost
commented
7 years ago @greenpau , we currently don't support configuring the ipset list with Metro. What you see is default behavior. How would you like to see this changed?
greenpau
commented
7 years ago @greenpau , we currently don't support configuring the ipset list with Metro. What you see is default behavior. How would you like to see this changed?
@bacastelli , it depends on what does the below do?
"vsc_static_route_list":
"0.0.0.0/1": !!null "null"
"128.0.0.0/1": !!null "null"we currently don't support configuring the ipset list with Metro.
I would say something like this:
ipset:
vsc:
- ip address of vsc
- ip address of vsc
- ip address of vsc
- etc.
vsd:
- x.x.x.x
- etc.
vstat:
- x.x.x.xThe above are IP address based set.
Then below, I have NET based sets:
vrs:
- 10.0.0.0/8
- etc.Currently, you don't have netmon sets.
netmon:
- 1.1.1.1
- 2.2.2.2The netmon is Prometheuse, SNMP, etc.
ghost
commented
4 years ago Decided not to implement.
Recently, I deployed Nuage VSD and VSC with Nuage Metro. I had one
build_vars.yamlfor a single VSD and another one for two VSCs.While reviewing security policies on VSD, I noticed the following:
The
0.0.0.0/1and128.0.0.0/1looked a bit odd and I recalled I've seen it somewhere.A similar reference existed in the
build_vars.yamlfile for VSCs, but not VSDs.Is there an option in
build_vars.yamlto configure what goes into theipsetlist?