The workflow for managing RBAC policies follows the standard Create, Read, Update, and Delete (CRUD) model that is used throughout the Neutron API. The OpenStack command-line interface can be used to manage access control policies. As of the Pike release of OpenStack, Horizon support for RBAC has not been implemented. However, resources shared via a policy can be utilized within the dashboard.
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
- Introduction to OpenStack Networking
- Installing OpenStack
- System requirements
- Initial network configuration
- Initial steps
- Installing OpenStack
- Installing and configuring the MySQL database server
- Installing and configuring the messaging server
- Installing and configuring memcached
- Installing and configuring the identity service
- Installing Keystone
- Installing and configuring the image service
- Installing and configuring the Compute service
- Installing the OpenStack Dashboard
- Summary
- Installing Neutron
- Virtual Network Infrastructure Using Linux Bridges
- Building a Virtual Switching Infrastructure Using Open vSwitch
- Using the Open vSwitch driver
- Basic OpenvSwitch commands
- Visualizing traffic flow when using Open vSwitch
- Configuring the ML2 networking plugin
- Configuring the Open vSwitch driver and agent
- Summary
- Building Networks with Neutron
- Network management in OpenStack
- Subnet management in OpenStack
- Managing network ports in OpenStack
- Summary
- Attaching Instances to Networks
- Managing Security Groups
- Security groups in OpenStack
- An introduction to iptables
- Working with security groups
- Managing security groups in the CLI
- Creating security groups in the CLI
- Deleting security groups in the CLI
- Listing security groups in the CLI
- Showing the details of a security group in the CLI
- Updating security groups in the CLI
- Creating security group rules in the CLI
- Deleting security group rules in the CLI
- Listing security group rules in the CLI
- Showing the details of a security group rule in the CLI
- Managing security groups in the CLI
- Applying security groups to instances and ports
- Implementing security group rules
- Working with security groups in the dashboard
- Disabling port security
- Allowed address pairs
- Summary
- Role-Based Access Control
- Creating Standalone Routers with Neutron
- Routing traffic in the cloud
- Installing and configuring the Neutron L3 agent
- Router management in the CLI
- Creating routers in the CLI
- Listing routers in the CLI
- Displaying router attributes in the CLI
- Updating router attributes in the CLI
- Working with router interfaces in the CLI
- Listing interfaces attached to routers
- Deleting internal interfaces
- Clearing the gateway interface
- Deleting routers in the CLI
- Network address translation
- Floating IP management
- Demonstrating traffic flow from an instance to the internet
- Setting the foundation
- Creating an external provider network
- Creating a Neutron router
- Attaching the router to an external network
- Testing gateway connectivity
- Creating an internal network
- Attaching the router to the internal network
- Creating instances
- Verifying instance connectivity
- Observing default NAT behavior
- Assigning floating IPs
- Reassigning floating IPs
- Router management in the dashboard
- Summary
- Router Redundancy Using VRRP
- Distributed Virtual Routers
- Load Balancing Traffic to Instances
- Fundamentals of load balancing
- Integrating load balancers into the network
- Installing LBaaS v2
- Load balancer management in the CLI
- Building a load balancer
- Load balancer management in the dashboard
- Summary
- Advanced Networking Topics
- Other Books You May Enjoy
Working with access control policies
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.