Adding release notes for new feature - provider security-groups

Change-Id: I949b2ac1b8233b7f600533e182e93cf54536096c
2016-09-11 05:04:33 -07:00 · 2016-09-11 05:04:33 -07:00 · 0243c2f56b
commit 0243c2f56b
parent abd604c91d
1 changed files with 14 additions and 0 deletions
--- a/releasenotes/notes/provider-security-group-2cfc1231dcaf21ac.yaml
+++ b/releasenotes/notes/provider-security-group-2cfc1231dcaf21ac.yaml
@ -0,0 +1,14 @@
+---
+prelude: >
+    Tenant specific blocking firewall rules to be managed via Neutron
+    security-group API
+features:
+    - Admin user can now create a security-group with the 'provider' flag to
+      indicate whether rules take implicit 'deny' action.
+    - Provider security-group rules takes precedence over normal security-group
+      rules
+    - Each tenant may have at most one security-group marked as provider
+    - New tenant ports are associated with the provider
+      security-group automatically, unless explicitly asked otherwise
+    - Supported by NSX V3
+    - Supported by NSX VSphere, version 6.2 or newer