def create_security_group(self): sg_id = os_utils.get_security_group_id(self.neutron_client, self.sg_name) if sg_id != '': self.logger.info("Using existing security group '%s'..." % self.sg_name) else: self.logger.info("Creating security group '%s'..." % self.sg_name) SECGROUP = os_utils.create_security_group(self.neutron_client, self.sg_name, self.sg_desc) if not SECGROUP: self.logger.error("Failed to create the security group...") return None sg_id = SECGROUP['id'] self.logger.debug("Security group '%s' with ID=%s created " "successfully." % (SECGROUP['name'], sg_id)) self.logger.debug("Adding ICMP rules in security group '%s'..." % self.sg_name) if not os_utils.create_secgroup_rule(self.neutron_client, sg_id, 'ingress', 'icmp'): self.logger.error("Failed to create security group rule...") return None self.logger.debug("Adding SSH rules in security group '%s'..." % self.sg_name) if not os_utils.create_secgroup_rule(self.neutron_client, sg_id, 'ingress', 'tcp', '22', '22'): self.logger.error("Failed to create security group rule...") return None if not os_utils.create_secgroup_rule( self.neutron_client, sg_id, 'egress', 'tcp', '22', '22'): self.logger.error("Failed to create security group rule...") return None return sg_id
def create_security_group(neutron_client): sg_id = openstack_utils.get_security_group_id(neutron_client, SECGROUP_NAME) if sg_id != '': logger.info("Using existing security group '%s'..." % SECGROUP_NAME) else: logger.info("Creating security group '%s'..." % SECGROUP_NAME) SECGROUP = openstack_utils.create_security_group(neutron_client, SECGROUP_NAME, SECGROUP_DESCR) if not SECGROUP: logger.error("Failed to create the security group...") return False sg_id = SECGROUP['id'] logger.debug("Security group '%s' with ID=%s created successfully." % (SECGROUP['name'], sg_id)) logger.debug("Adding ICMP rules in security group '%s'..." % SECGROUP_NAME) if not openstack_utils.create_secgroup_rule(neutron_client, sg_id, 'ingress', 'icmp'): logger.error("Failed to create the security group rule...") return False logger.debug("Adding SSH rules in security group '%s'..." % SECGROUP_NAME) if not openstack_utils.create_secgroup_rule(neutron_client, sg_id, 'ingress', 'tcp', '22', '22'): logger.error("Failed to create the security group rule...") return False if not openstack_utils.create_secgroup_rule(neutron_client, sg_id, 'egress', 'tcp', '22', '22'): logger.error("Failed to create the security group rule...") return False return sg_id