x/vmware-nsx
Code Issues Proposed changes
783d275dab
vmware-nsx/releasenotes/notes/block-all-no-security-groups-47af550349dbc85a.yaml
Gary Kotton 6362e710d9 NSX|V: ensure that no sec groups and port sec will discard traffic 
Traffic to ports that have port security and port security enabled
will by default be discarded. A configuration variable has been added
with default False so that there is not a degradation with the current
behaviour.

The variable is use_default_block_all.

Change-Id: I5569234de01c116d1ad3161cfaf54404467f6816
2018-02-17 01:12:12 +02:00

10 lines
403 B
YAML
Raw Blame History

---
prelude: >
Enable 'use_default_block_all' to ensure that traffic to a port that has
no security groups and has port security enabled will be discarded.
features:
- |
Enable 'use_default_block_all' to ensure that traffic to a port that has
no security groups and has port security enabled will be discarded. This
will ensure the same behaviours as the upstream security groups.
View Git Blame Copy Permalink