New Question
0

Hyperv Security Groups update does not work correctly.

asked 2016-06-08 09:37:44 +0300

vinod-kumar5 gravatar image

There is an issue seen in Hyperv where Security Groups update does not work correctly. This is not seen always but sometimes (the behaviour is indeterministic). Investigation shows that rules are getting created and flushed as expected on the compute node but still we see traffic flowing for blocked protocols.

Problem Description: There are two Security Groups (SG1 and SG2), SG1 has a rule to allow SSH connection whereas SG2 does not has any SSH related rules which means SSH will be blocked by default. Booting a VM with SG1 rules results in SSH allowed to VM which is perfectly fine. Now for the same VM we moved from SG1 to SG2, the expectation is that any new SSH connection will not be allowed to the VM but actually sometimes we see SSH is allowed even though SSH rules are not present for the VM. We validated the absence of rules for the VM via powershell command and found to be SSH rules NOT existing which means rules are getting flushed but still SSH is happening which indicates a windows issue.

It gives a feeling as if rules were flushed but somewhere in cache it does exists.

edit retag flag offensive close merge delete

1 answer

Sort by » oldest newest most voted
0

answered 2016-11-09 10:30:25 +0300

Claudiu Belu gravatar image

Hello,

On what branch is this happening? I remember fixing this issue some time ago.

Best regards,

Claudiu Belu

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2016-06-08 09:37:44 +0300

Seen: 634 times

Last updated: Nov 09 '16