The default value of quota_firewall_rule should not be -1

A bad tenant User can create unlimited firewall rules to "attack" the network node, so I modify the default value to 100. Change-Id: I485c24cb1a7ed77dee81356fe6d95276808a47d4 Closes-Bug: #1346372
2014-07-21 23:41:54 +08:00 · 2014-07-21 23:41:54 +08:00 · 7a6b80fcf8
commit 7a6b80fcf8
parent ef379f7f97
1 changed files with 1 additions and 1 deletions
--- a/neutron/extensions/firewall.py
+++ b/neutron/extensions/firewall.py
@ -293,7 +293,7 @@ firewall_quota_opts = [
               help=_('Number of firewall policies allowed per tenant. '
                      'A negative value means unlimited.')),
    cfg.IntOpt('quota_firewall_rule',
-               default=-1,
+               default=100,
               help=_('Number of firewall rules allowed per tenant. '
                      'A negative value means unlimited.')),
 ]