Acccept metadata ip so packets aren't snatted

* fixes bug 968453 Change-Id: I12a7967bb711fe5fd9a7ebc2473209833d33f546
openstack · Mar 30, 2012 · 6ecb3c2 · 6ecb3c2
1 parent ada63db
commit 6ecb3c2
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/nova/network/linux_net.py b/nova/network/linux_net.py
@@ -441,6 +441,10 @@ def init_host(ip_range=None):
 
     add_snat_rule(ip_range)
 
+    iptables_manager.ipv4['nat'].add_rule('POSTROUTING',
+                                          '-s %s -d %s/32 -j ACCEPT' %
+                                          (ip_range, FLAGS.metadata_host))
+
     iptables_manager.ipv4['nat'].add_rule('POSTROUTING',
                                           '-s %s -d %s -j ACCEPT' %
                                           (ip_range, FLAGS.dmz_cidr))