summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRichard Maw <richard.maw@codethink.co.uk>2015-04-15 05:02:24 (GMT)
committerTiago Gomes <tiago.gomes@codethink.co.uk>2015-04-16 16:34:48 (GMT)
commitcfe02827cdd33d19f053514be8d5cf531317e1dd (patch)
tree3a1c5cdec60b5d232b5e8d5f21e665d52304bc1a
parentfb3a02d5a472b8ce2a8acdfaff89143a56845e7b (diff)
downloaddefinitions-cfe02827cdd33d19f053514be8d5cf531317e1dd.tar.gz
OpenStack: Disable rp filtering
This drop-in file will be processed by systemd on boot. Change-Id: I055d22dd481cc5084f6dbacbb787c3015d75461e
-rw-r--r--openstack/manifest2
-rw-r--r--openstack/usr/lib/sysctl.d/neutron.conf3
2 files changed, 5 insertions, 0 deletions
diff --git a/openstack/manifest b/openstack/manifest
index 3b32f81..072c647 100644
--- a/openstack/manifest
+++ b/openstack/manifest
@@ -112,6 +112,8 @@
0040755 0 0 /usr/share/openstack/rabbitmq
0100644 0 0 /usr/share/openstack/rabbitmq/rabbitmq-env.conf
0100644 0 0 /usr/share/openstack/rabbitmq/rabbitmq.config
+0040755 0 0 /usr/lib/sysctl.d
+0100644 0 0 /usr/lib/sysctl.d/neutron.conf
0100644 0 0 /usr/lib/systemd/system/apache-httpd.service
0100644 0 0 /usr/lib/systemd/system/openstack-keystone.service
0100644 0 0 /usr/lib/systemd/system/openstack-keystone-setup.service
diff --git a/openstack/usr/lib/sysctl.d/neutron.conf b/openstack/usr/lib/sysctl.d/neutron.conf
new file mode 100644
index 0000000..644ca11
--- /dev/null
+++ b/openstack/usr/lib/sysctl.d/neutron.conf
@@ -0,0 +1,3 @@
+# Disable rp filtering, enabling forwarding is handled by networkd
+net.ipv4.conf.all.rp_filter=0
+net.ipv4.conf.default.rp_filter=0