diff options
author | Narinder Gupta <narinder.gupta@canonical.com> | 2017-05-30 15:03:36 -0500 |
---|---|---|
committer | Narinder Gupta <narinder.gupta@canonical.com> | 2017-05-30 15:03:36 -0500 |
commit | d2d7586c4959bbb4db265fd8aa41519b595856db (patch) | |
tree | 9802bec43877bb1a8b1ed85741fdb3da3862da26 /juju/joid-configure-openstack | |
parent | a79062a98d941f186c83fcc47954d339c471632b (diff) |
modify openstack commands to use openstack tools.
Change-Id: I8ffebc25bc21e1c9d4c1121bbc9ea293d9d82fae
Signed-off-by: Narinder Gupta <narinder.gupta@canonical.com>
Diffstat (limited to 'juju/joid-configure-openstack')
-rwxr-xr-x | juju/joid-configure-openstack | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/juju/joid-configure-openstack b/juju/joid-configure-openstack index 5df82b87..5887ac73 100755 --- a/juju/joid-configure-openstack +++ b/juju/joid-configure-openstack @@ -54,10 +54,12 @@ neutron router-interface-add $ROUTER_ID $SUBNET_ID || true echo "Configuring security groups for access to ICMP, SSH and RDP by default" +PROJECT_ID=`openstack project list -c ID -f value --domain admin_domain` + #Configure the default security group to allow ICMP and SSH -neutron security-group-rule-list | grep "icmp" > /dev/null 2>&1 || neutron security-group-rule-create --direction ingress --ethertype IPv4 --protocol icmp --remote-ip-prefix 0.0.0.0/0 default -neutron security-group-rule-list | grep "22/tcp" > /dev/null 2>&1 || neutron security-group-rule-create --direction ingress --ethertype IPv4 --protocol tcp --port-range-min 22 --port-range-max 22 --remote-ip-prefix 0.0.0.0/0 default -neutron security-group-rule-list | grep "3389/tcp" > /dev/null 2>&1 || neutron security-group-rule-create --direction ingress --ethertype IPv4 --protocol tcp --port-range-min 3389 --port-range-max 3389 --remote-ip-prefix 0.0.0.0/0 default +sicmpecuritygroup=`openstack security group list --project "$PROJECT_ID" -c ID -f value` +openstack security group rule list $securitygroup | grep "icmp" > /dev/null 2>&1 || openstack security group rule create --remote-group $securitygroup --ingress --protocol icmp --prefix "0.0.0.0/0"$securitygroup +openstack security group rule list $securitygroup | grep "22/tcp" > /dev/null 2>&1 || openstack security group rule create --remote-group $securitygroup --ingress --protocol tcp --dst-port 22:22 --prefix "0.0.0.0/0" $securitygroup echo "Uploading default SSH key" |