From d384bc85cd600fddee82d2d39b7fc6da6727ba11 Mon Sep 17 00:00:00 2001 From: George Paraskevopoulos Date: Fri, 9 Sep 2016 16:16:21 +0300 Subject: SFC testcase IP tables policy Add iptables rule to open requests. Tacker client fails to connect without this firewall rule. Change-Id: I7ca0258110571d8aacdf8214830e4fce5a172c59 Signed-off-by: George Paraskevopoulos (cherry picked from commit a5bdcbf651016ed552967ed124c5fb2a19ad3d98) --- testcases/features/sfc/sfc.py | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/testcases/features/sfc/sfc.py b/testcases/features/sfc/sfc.py index 5a361cda5..8aa7bb9a0 100755 --- a/testcases/features/sfc/sfc.py +++ b/testcases/features/sfc/sfc.py @@ -86,6 +86,10 @@ def main(): " ssh " + ip_server + " iptables -P INPUT ACCEPT ") iptable_cmd2 = ("sshpass -p r00tme ssh " + ssh_options + " root@10.20.0.2" " ssh " + ip_server + " iptables -t nat -P INPUT ACCEPT ") + iptable_cmd3 = ("sshpass -p r00tme ssh " + ssh_options + " root@10.20.0.2" + " ssh " + ssh_options + " " + ip_server + + " iptables -A INPUT -m state" + " --state NEW,ESTABLISHED,RELATED -j ACCEPT") logger.info("Changing firewall policy in controller: '%s'" % iptable_cmd1) subprocess.call(iptable_cmd1, shell=True, stderr=subprocess.PIPE) @@ -93,6 +97,9 @@ def main(): logger.info("Changing firewall policy in controller: '%s'" % iptable_cmd2) subprocess.call(iptable_cmd2, shell=True, stderr=subprocess.PIPE) + logger.info("Changing firewall policy in controller: '%s'" % iptable_cmd3) + subprocess.call(iptable_cmd2, shell=True, stderr=subprocess.PIPE) + # Getting the different clients nova_client = os_utils.get_nova_client() -- cgit 1.2.3-korg