Set priority of security group rules to 300 to make sure they override the defaults.

author: Soren Hansen <soren.hansen@rackspace.com> 2010-09-27 22:00:17 +0200
committer: Soren Hansen <soren.hansen@rackspace.com> 2010-09-27 22:00:17 +0200
commit: 9140cd991e5507f65ff1d6a608bd8fd4c9956dbf (patch)
tree: ebdb0782bf9104524ad3dcd747e7f26c5d05f925
parent: e705b666679ecccfc3e91c8029f2c646849509ee (diff)
download: nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.tar.gz
nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.tar.xz
nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/nova/virt/libvirt_conn.py b/nova/virt/libvirt_conn.py
index a7370e036..d90853084 100644
--- a/nova/virt/libvirt_conn.py
+++ b/nova/virt/libvirt_conn.py
@@ -561,7 +561,7 @@ class NWFilterFirewall(object):
         security_group = db.security_group_get({}, security_group_id)
         rule_xml = ""
         for rule in security_group.rules:
-            rule_xml += "<rule action='accept' direction='in' priority='900'>"
+            rule_xml += "<rule action='accept' direction='in' priority='300'>"
             if rule.cidr:
                 rule_xml += "<%s srcipaddr='%s' " % (rule.protocol, rule.cidr)
                 if rule.protocol in ['tcp', 'udp']:
author	Soren Hansen <soren.hansen@rackspace.com>	2010-09-27 22:00:17 +0200
committer	Soren Hansen <soren.hansen@rackspace.com>	2010-09-27 22:00:17 +0200
commit	9140cd991e5507f65ff1d6a608bd8fd4c9956dbf (patch)
tree	ebdb0782bf9104524ad3dcd747e7f26c5d05f925
parent	e705b666679ecccfc3e91c8029f2c646849509ee (diff)
download	nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.tar.gz nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.tar.xz nova-9140cd991e5507f65ff1d6a608bd8fd4c9956dbf.zip