How to restrict SSH access to OpenStack Overcloud nodes

Solution Verified - Updated -

Issue

  • What is the supported Director method to restrict certain Overcloud networks from being accessible to SSH login?
  • There is a Network-A (192.168.0.0/24) and Network-B (192.168.1.0/24), both routable, and there is a need for the nodes' IP addresses to be accessible via SSH from the Network-A but not from the Network-B by external IP addresses.
  • How could these firewall rules be configured through Director in a scalable manner?

Environment

  • Red Hat OpenStack Platform (RHOSP)
    • 13.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In