This was tested in a fresh bosh-lite with latest CF and deployed by cf-deployment 49a9d51ae75bbafc2e1f5c1ba644e3d08afb4e7d
We are also seeing this issue in Bluemix.
cf security-groups
Getting security groups as admin
OK
Name Organization Space
#0 public_networks
#1 dns myorg space1
dns myorg space2
dns myorg space3
#2 load_balancer
Get DNS security group only once.
I am getting the group one for the global and 1 time per associate space.
{
"total_results": 5,
"total_pages": 1,
"prev_url": null,
"next_url": null,
"resources": [
{
"metadata": {
"guid": "66194193-b8be-423e-b7fc-18c352901b87",
"url": "/v2/security_groups/66194193-b8be-423e-b7fc-18c352901b87",
"created_at": "2017-06-27T13:54:29Z",
"updated_at": "2017-06-27T13:54:29Z"
},
"entity": {
"name": "public_networks",
"rules": [
{
"destination": "0.0.0.0-9.255.255.255",
"protocol": "all"
},
{
"destination": "11.0.0.0-169.253.255.255",
"protocol": "all"
},
{
"destination": "169.255.0.0-172.15.255.255",
"protocol": "all"
},
{
"destination": "172.32.0.0-192.167.255.255",
"protocol": "all"
},
{
"destination": "192.169.0.0-255.255.255.255",
"protocol": "all"
}
],
"running_default": true,
"staging_default": true,
"spaces_url": "/v2/security_groups/66194193-b8be-423e-b7fc-18c352901b87/spaces",
"staging_spaces_url": "/v2/security_groups/66194193-b8be-423e-b7fc-18c352901b87/staging_spaces"
}
},
{
"metadata": {
"guid": "90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"created_at": "2017-06-27T13:54:29Z",
"updated_at": "2017-06-27T13:54:29Z"
},
"entity": {
"name": "dns",
"rules": [
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "tcp"
},
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "udp"
}
],
"running_default": true,
"staging_default": true,
"spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/spaces",
"staging_spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/staging_spaces"
}
},
{
"metadata": {
"guid": "90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"created_at": "2017-06-27T13:54:29Z",
"updated_at": "2017-06-27T13:54:29Z"
},
"entity": {
"name": "dns",
"rules": [
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "tcp"
},
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "udp"
}
],
"running_default": true,
"staging_default": true,
"spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/spaces",
"staging_spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/staging_spaces"
}
},
{
"metadata": {
"guid": "90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564",
"created_at": "2017-06-27T13:54:29Z",
"updated_at": "2017-06-27T13:54:29Z"
},
"entity": {
"name": "dns",
"rules": [
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "tcp"
},
{
"destination": "0.0.0.0/0",
"ports": "53",
"protocol": "udp"
}
],
"running_default": true,
"staging_default": true,
"spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/spaces",
"staging_spaces_url": "/v2/security_groups/90c7e9e1-1029-410c-b2c3-ddbcdd8d4564/staging_spaces"
}
},
{
"metadata": {
"guid": "6dc1130d-f1a5-414e-87ca-28649af58568",
"url": "/v2/security_groups/6dc1130d-f1a5-414e-87ca-28649af58568",
"created_at": "2017-06-27T13:54:29Z",
"updated_at": "2017-06-27T13:54:29Z"
},
"entity": {
"name": "load_balancer",
"rules": [
{
"destination": "10.244.0.34",
"protocol": "all"
}
],
"running_default": true,
"staging_default": false,
"spaces_url": "/v2/security_groups/6dc1130d-f1a5-414e-87ca-28649af58568/spaces",
"staging_spaces_url": "/v2/security_groups/6dc1130d-f1a5-414e-87ca-28649af58568/staging_spaces"
}
}
]
}