Python set_ip_nonlocal_bind_for_namespace Exemples

Exemple #1

Fichier : ha_router.py Projet : stackhpc/neutron

 def create(self):
     super(HaRouterNamespace, self).create(ipv6_forwarding=False)
     # HA router namespaces should not have ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name, 0)
     # Linux should not automatically assign link-local addr for HA routers
     # They are managed by keepalived
     ip_wrapper = ip_lib.IPWrapper(namespace=self.name)
     cmd = ['sysctl', '-w', 'net.ipv6.conf.all.addr_gen_mode=1']
     ip_wrapper.netns.execute(cmd, privsep_exec=True)

Exemple #2

Fichier : dvr_snat_ns.py Projet : AradhanaSingh/neutron

 def create(self):
     super(SnatNamespace, self).create()
     # This might be an HA router namespaces and it should not have
     # ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name)
     # Set nf_conntrack_tcp_loose to 0 to ensure mid-stream
     # TCP conversations aren't taken over by SNAT
     cmd = ['net.netfilter.nf_conntrack_tcp_loose=0']
     ip_lib.sysctl(cmd, namespace=self.name)

Exemple #3

 def create(self):
     super(SnatNamespace, self).create()
     # This might be an HA router namespaces and it should not have
     # ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name)
     # Set nf_conntrack_tcp_loose to 0 to ensure mid-stream
     # TCP conversations aren't taken over by SNAT
     cmd = ['net.netfilter.nf_conntrack_tcp_loose=0']
     ip_lib.sysctl(cmd, namespace=self.name)

Exemple #4

Fichier : dvr_fip_ns.py Projet : kyjsqd222/neutron

    def create(self):
        LOG.debug("DVR: add fip namespace: %s", self.name)
        # parent class will ensure the namespace exists and turn-on forwarding
        super(FipNamespace, self).create()
        ip_lib.set_ip_nonlocal_bind_for_namespace(self.name, 1,
                                                  root_namespace=True)

        # no connection tracking needed in fip namespace
        self._iptables_manager.ipv4['raw'].add_rule('PREROUTING',
                                                    '-j CT --notrack')
        self._iptables_manager.apply()

Exemple #5

 def create(self):
     super(HaRouterNamespace, self).create(ipv6_forwarding=False)
     # HA router namespaces should not have ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name, 0)

Exemple #6

Fichier : dvr_snat_ns.py Projet : 2020human/neutron

 def create(self):
     super(SnatNamespace, self).create()
     # This might be an HA router namespaces and it should not have
     # ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name)

Exemple #7

Fichier : ha_router.py Projet : AradhanaSingh/neutron

 def create(self):
     super(HaRouterNamespace, self).create()
     # HA router namespaces should not have ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name)

Exemple #8

 def create(self):
     super(SnatNamespace, self).create()
     # This might be an HA router namespaces and it should not have
     # ip_nonlocal_bind enabled
     ip_lib.set_ip_nonlocal_bind_for_namespace(self.name)