[RA-1 Ch02] Appropriate security standards compliance in req.sec.ntw.01 and req.sec.ntw.02 #266
Comments
d-j-eagle
changed the title
rabi-abdel
changed the title
pgoyal01
added a commit
that referenced
this issue
Nov 5, 2019
pgoyal01
added a commit
that referenced
this issue
Nov 12, 2019
[RA-1 Ch02] Updated to resolve valuable feedback from multiple folks and @collivier suggested changes to Block storage and networking. Resolves Issues #266, #314, #339 and #435
iangardner22
changed the title
cntt-n
pushed a commit
that referenced
this issue
Jan 10, 2020
* [RA-1 Ch02] update to handle multiple issues PR covers Issues #266, #314, #339 and #435 * [RA-1 Ch02] Updated [RA-1 Ch02] Updated to resolve valuable feedback from multiple folks and @collivier suggested changes to Block storage and networking. Resolves Issues #266, #314, #339 and #435 * [RA-1 Ch02] Resolve Issues [RA-1 Ch02] Resolve Issues Changes to 'req.inf.com.08' and add 'req.inf.com.09' * [RA-1 Ch02] Resolve "remote Block Storage" Changed: | `req.inf.stg.01` | Storage | The Architecture **must** provide remote (not directly attached to the host) Block storage for VM Instances. | |--------|-------|------------------------| * [RA-1 Ch02} Resolve 2.3 Architecture introduction [RA-1 Ch02} Resolve 2.3 Architecture introduction as per @CsatariGergely * [RA-1 Ch02] Commented out req.sec.ntw.01/02 [RA-1 Ch02] Commented out req.sec.ntw.01 and req.sec.ntw.02 Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com>
rabiabdel
added a commit
that referenced
this issue
Jan 10, 2020
* RA2 Ch4 - Host OS, Kubernetes, Container Runtime and Storage content (#874) * RA2 Ch04 Initial Content * Update chapter04.md * RA2 Ch4 - HA notes * RA2 Ch4 move content to Ch3 Host OS description * RA2 Ch4 - updates to 4.2, 4.3, 4.4 Updates to Host OS, Kubernetes, Runtimes sections * RA2 Ch4 - add more detail * RA2 Ch4 storage updates Storage updates, added OCI and changed status. * RA2 Ch3 - typo correction 4-1 --> 3-1 * RA2 Ch4 - typos and updates Typos and added note about etcd not running on worker nodes. * RA2 Ch4 - added note about kubeadm kubeadm driving Host OS versions * RA2 Ch4 - remove rkt Archived by CNCF * RA2 Ch4 - remove note about Kata/gVisor * RA2 Ch4 - update kubernetes version statement added content to row60 * Update to 4.2 and Table 4-1 - remove specific operating systems and focus on kernel versions. * RA2 Ch3 - typo correction row54 * RA2 Ch4 - remove linux 4+ as redundant * RA2 Ch4 - update to k8s version spec row54 * RA2 Ch4 - 4.2 changes row34/35 * RA2 Ch4 - merge conflict * [RA2 Ch04]: Networking part of Ch4 in RA2 (#821) * Initial commmit of the networking part of Ch4 in RA2 * Adding references to requirements This change adds references to the different requirements from Ch01. * Comparision between DANM and Multus added Due to requests in comments this change adds a comparision table of the relevant requirements and additional features of DANM and Multus. * Adding MACVLAN and User Space CNI backend options Addressing incoming comments this change adds the option to use MACVLAN CNI, lists the backend options for the User Space CNi and adds the SR-IOV Device Plugin to the SR-IOV related note. * Add an eitors note about the list of CNI plugins As we were not able to agree on the set of CNI plugins this change adds a note that the list can be changed in the future. * Must -> may for CNI-s This change switches the "must" statements regarding to CNI-s to "may" statements and adds a cladification text to the related editors note how this will be fixed in the next releases. * [RA-1 Ch02] update to handle multiple issues (#558) * [RA-1 Ch02] update to handle multiple issues PR covers Issues #266, #314, #339 and #435 * [RA-1 Ch02] Updated [RA-1 Ch02] Updated to resolve valuable feedback from multiple folks and @collivier suggested changes to Block storage and networking. Resolves Issues #266, #314, #339 and #435 * [RA-1 Ch02] Resolve Issues [RA-1 Ch02] Resolve Issues Changes to 'req.inf.com.08' and add 'req.inf.com.09' * [RA-1 Ch02] Resolve "remote Block Storage" Changed: | `req.inf.stg.01` | Storage | The Architecture **must** provide remote (not directly attached to the host) Block storage for VM Instances. | |--------|-------|------------------------| * [RA-1 Ch02} Resolve 2.3 Architecture introduction [RA-1 Ch02} Resolve 2.3 Architecture introduction as per @CsatariGergely * [RA-1 Ch02] Commented out req.sec.ntw.01/02 [RA-1 Ch02] Commented out req.sec.ntw.01 and req.sec.ntw.02 Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com> * [RA1 Ch08] Add gaps in openstack release ocata, pike and stein (#843) * [RI1 Ch08] Add gaps in openstack release ocata, pike and stein * Add API versions * Add features of pike and stein * Add upgrade check for Stein Fixes #842 * Add nova features * Fix JWT short form and remaining services * Update table of content * Move into RA-8 from RI-8 * Delete Deprecated Annex (#933) * [RI Ch07] Sridhar ch7 sec5and6 (#931) * Chapter-7: Section 5 and 6. Adding contents from Sections 5 and 6 of Chapter-7 Signed-off-by: Sridhar K. N. Rao <sridhar.rao@spirent.com> * Fixed Typos and removed wrong special chars. Signed-off-by: Sridhar K. N. Rao <sridhar.rao@spirent.com> Co-authored-by: Rabi Abdel <51988225+rabi-abdel@users.noreply.github.com> * [RC1] Fill all gaps already tracked as issues in CNTT (#918) * Fill all gaps already tracked as issues in CNTT Port VTP test cases to Xtesting [1] is key because the TC doesn't conform to the principles and requirements defined. #917 Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * Precise the gaps to avoid confusion Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * Add tab for the new TC Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * [RA-1 Ch04] Update Figure 4-1 (#927) * [RA-1 Ch04] Update Figure 4-1 [RA-1 Ch04] @iangardner22 Updated Figure 4-1 and added network descriptions (I am making the changes on behalf of @iangardner22) * [RA-1 Ch04] Upload latest version of Figure 4-1 [RA-1 Ch04] Upload latest version of Figure 4-1 * [RA-1 Ch04] Re upload of new Figure 4-1 [RA-1 Ch04] Re upload of new Figure 4-1 * [RA-1 Ch04] Delete Figure_4_1_OpenStack_Network_Layout_20200110 [RA-1 Ch04] Delete Figure_4_1_OpenStack_Network_Layout_20200110 -- will be updated with modified version * [RA-1 Ch04] Upload corrected version of Figure 4-1 * [WIP] [RI Ch07] Update Deployment Cookbook (#817) * Topology Diagram Description of lab topology, aligning with OPNFV Pharos. Signed-off-by: beierl <mbeierl@vmware.com> #406 * [RI1 Ch06]i Topology Diagram Description of lab topology, aligning with OPNFV Pharos. Signed-off-by: beierl <mbeierl@vmware.com> * [WIP] [RI Ch07] Update Deployment Cookbook #797 * Create path for Airship vs. future installers * Adds requirements Added section on hardware used and information about how to get VPN access and what routes are available. * Adds requirements Added section on hardware used and information about how to get VPN access and what routes are available. * Revert "Adds requirements" This reverts commit b25e762. * Changes to Ch 07 only Cleanup of chapter 6 in this PR so that it does not interfere with any other PR. * Changes to Ch 07 only Cleanup of chapter 6 in this PR so that it does not interfere with any other PR. Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com> * [RC] One missing word (nit) (#934) Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> Co-authored-by: Tom Kivlin <52716470+tomkivlin@users.noreply.github.com> Co-authored-by: Gergely Csatari <gergely.csatari@nokia.com> Co-authored-by: Pankaj Goyal <52107136+pgoyal01@users.noreply.github.com> Co-authored-by: Deepanshu Bhatia <deep23bhatia@gmail.com> Co-authored-by: Mark Shostak (AT&T) <49962775+markshostak@users.noreply.github.com> Co-authored-by: Sridhar K N Rao <ngignir@gmail.com> Co-authored-by: Rabi Abdel <51988225+rabi-abdel@users.noreply.github.com> Co-authored-by: collivier <ollivier.cedric@gmail.com> Co-authored-by: Mark Beierl <mbeierl@vmware.com>
cntt-n
pushed a commit
that referenced
this issue
Jan 10, 2020
* Preperatin for Snezka release * sync (#935) * RA2 Ch4 - Host OS, Kubernetes, Container Runtime and Storage content (#874) * RA2 Ch04 Initial Content * Update chapter04.md * RA2 Ch4 - HA notes * RA2 Ch4 move content to Ch3 Host OS description * RA2 Ch4 - updates to 4.2, 4.3, 4.4 Updates to Host OS, Kubernetes, Runtimes sections * RA2 Ch4 - add more detail * RA2 Ch4 storage updates Storage updates, added OCI and changed status. * RA2 Ch3 - typo correction 4-1 --> 3-1 * RA2 Ch4 - typos and updates Typos and added note about etcd not running on worker nodes. * RA2 Ch4 - added note about kubeadm kubeadm driving Host OS versions * RA2 Ch4 - remove rkt Archived by CNCF * RA2 Ch4 - remove note about Kata/gVisor * RA2 Ch4 - update kubernetes version statement added content to row60 * Update to 4.2 and Table 4-1 - remove specific operating systems and focus on kernel versions. * RA2 Ch3 - typo correction row54 * RA2 Ch4 - remove linux 4+ as redundant * RA2 Ch4 - update to k8s version spec row54 * RA2 Ch4 - 4.2 changes row34/35 * RA2 Ch4 - merge conflict * [RA2 Ch04]: Networking part of Ch4 in RA2 (#821) * Initial commmit of the networking part of Ch4 in RA2 * Adding references to requirements This change adds references to the different requirements from Ch01. * Comparision between DANM and Multus added Due to requests in comments this change adds a comparision table of the relevant requirements and additional features of DANM and Multus. * Adding MACVLAN and User Space CNI backend options Addressing incoming comments this change adds the option to use MACVLAN CNI, lists the backend options for the User Space CNi and adds the SR-IOV Device Plugin to the SR-IOV related note. * Add an eitors note about the list of CNI plugins As we were not able to agree on the set of CNI plugins this change adds a note that the list can be changed in the future. * Must -> may for CNI-s This change switches the "must" statements regarding to CNI-s to "may" statements and adds a cladification text to the related editors note how this will be fixed in the next releases. * [RA-1 Ch02] update to handle multiple issues (#558) * [RA-1 Ch02] update to handle multiple issues PR covers Issues #266, #314, #339 and #435 * [RA-1 Ch02] Updated [RA-1 Ch02] Updated to resolve valuable feedback from multiple folks and @collivier suggested changes to Block storage and networking. Resolves Issues #266, #314, #339 and #435 * [RA-1 Ch02] Resolve Issues [RA-1 Ch02] Resolve Issues Changes to 'req.inf.com.08' and add 'req.inf.com.09' * [RA-1 Ch02] Resolve "remote Block Storage" Changed: | `req.inf.stg.01` | Storage | The Architecture **must** provide remote (not directly attached to the host) Block storage for VM Instances. | |--------|-------|------------------------| * [RA-1 Ch02} Resolve 2.3 Architecture introduction [RA-1 Ch02} Resolve 2.3 Architecture introduction as per @CsatariGergely * [RA-1 Ch02] Commented out req.sec.ntw.01/02 [RA-1 Ch02] Commented out req.sec.ntw.01 and req.sec.ntw.02 Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com> * [RA1 Ch08] Add gaps in openstack release ocata, pike and stein (#843) * [RI1 Ch08] Add gaps in openstack release ocata, pike and stein * Add API versions * Add features of pike and stein * Add upgrade check for Stein Fixes #842 * Add nova features * Fix JWT short form and remaining services * Update table of content * Move into RA-8 from RI-8 * Delete Deprecated Annex (#933) * [RI Ch07] Sridhar ch7 sec5and6 (#931) * Chapter-7: Section 5 and 6. Adding contents from Sections 5 and 6 of Chapter-7 Signed-off-by: Sridhar K. N. Rao <sridhar.rao@spirent.com> * Fixed Typos and removed wrong special chars. Signed-off-by: Sridhar K. N. Rao <sridhar.rao@spirent.com> Co-authored-by: Rabi Abdel <51988225+rabi-abdel@users.noreply.github.com> * [RC1] Fill all gaps already tracked as issues in CNTT (#918) * Fill all gaps already tracked as issues in CNTT Port VTP test cases to Xtesting [1] is key because the TC doesn't conform to the principles and requirements defined. #917 Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * Precise the gaps to avoid confusion Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * Add tab for the new TC Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> * [RA-1 Ch04] Update Figure 4-1 (#927) * [RA-1 Ch04] Update Figure 4-1 [RA-1 Ch04] @iangardner22 Updated Figure 4-1 and added network descriptions (I am making the changes on behalf of @iangardner22) * [RA-1 Ch04] Upload latest version of Figure 4-1 [RA-1 Ch04] Upload latest version of Figure 4-1 * [RA-1 Ch04] Re upload of new Figure 4-1 [RA-1 Ch04] Re upload of new Figure 4-1 * [RA-1 Ch04] Delete Figure_4_1_OpenStack_Network_Layout_20200110 [RA-1 Ch04] Delete Figure_4_1_OpenStack_Network_Layout_20200110 -- will be updated with modified version * [RA-1 Ch04] Upload corrected version of Figure 4-1 * [WIP] [RI Ch07] Update Deployment Cookbook (#817) * Topology Diagram Description of lab topology, aligning with OPNFV Pharos. Signed-off-by: beierl <mbeierl@vmware.com> #406 * [RI1 Ch06]i Topology Diagram Description of lab topology, aligning with OPNFV Pharos. Signed-off-by: beierl <mbeierl@vmware.com> * [WIP] [RI Ch07] Update Deployment Cookbook #797 * Create path for Airship vs. future installers * Adds requirements Added section on hardware used and information about how to get VPN access and what routes are available. * Adds requirements Added section on hardware used and information about how to get VPN access and what routes are available. * Revert "Adds requirements" This reverts commit b25e762. * Changes to Ch 07 only Cleanup of chapter 6 in this PR so that it does not interfere with any other PR. * Changes to Ch 07 only Cleanup of chapter 6 in this PR so that it does not interfere with any other PR. Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com> * [RC] One missing word (nit) (#934) Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> Co-authored-by: Tom Kivlin <52716470+tomkivlin@users.noreply.github.com> Co-authored-by: Gergely Csatari <gergely.csatari@nokia.com> Co-authored-by: Pankaj Goyal <52107136+pgoyal01@users.noreply.github.com> Co-authored-by: Deepanshu Bhatia <deep23bhatia@gmail.com> Co-authored-by: Mark Shostak (AT&T) <49962775+markshostak@users.noreply.github.com> Co-authored-by: Sridhar K N Rao <ngignir@gmail.com> Co-authored-by: Rabi Abdel <51988225+rabi-abdel@users.noreply.github.com> Co-authored-by: collivier <ollivier.cedric@gmail.com> Co-authored-by: Mark Beierl <mbeierl@vmware.com> * resolve conflicts in Ch07 * Update README.md * erevert * update version number Co-authored-by: Rabi Abdel <45387599+rabiabdel@users.noreply.github.com> Co-authored-by: Tom Kivlin <52716470+tomkivlin@users.noreply.github.com> Co-authored-by: Gergely Csatari <gergely.csatari@nokia.com> Co-authored-by: Pankaj Goyal <52107136+pgoyal01@users.noreply.github.com> Co-authored-by: Deepanshu Bhatia <deep23bhatia@gmail.com> Co-authored-by: Mark Shostak (AT&T) <49962775+markshostak@users.noreply.github.com> Co-authored-by: Sridhar K N Rao <ngignir@gmail.com> Co-authored-by: collivier <ollivier.cedric@gmail.com> Co-authored-by: Mark Beierl <mbeierl@vmware.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Need to modify wording such that there is compliance to an appropriate standard - which may, or may not be, ISO27001 - depending upon level of security required, region, function/applicability, and etc.
The text was updated successfully, but these errors were encountered: