etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

icmp-type parameter was being skipped

This commit is contained in:
Ian Southam 2014-09-04 17:50:30 +02:00 committed by wilderrodrigues
parent 2765a506dc
commit 3cdaa55462
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
systemvm/patches/debian/config/opt/cloud/bin/CsNetfilter.py
View File

@ -92,6 +92,7 @@ class CsNetfilters(object):
for r in del_list:
cmd = "iptables -t %s %s" % (r.get_table(), r.to_str(True))
CsHelper.execute(cmd)
print "Delete rule %s from table %s" % (r.to_str(True), r.get_table())
logging.info("Delete rule %s from table %s", r.to_str(True), r.get_table())
def compare(self, list):
@ -205,7 +206,7 @@ class CsNetfilter(object):
def to_str(self, delete = False):
""" Convert the rule back into aynactically correct iptables command """
# Order is important
order = ['-A', '-s', '-d', '!_-d', '-i', '-p', '-m', '-m2', '--state',
order = ['-A', '-s', '-d', '!_-d', '-i', '-p', '-m', '-m2', '--icmp-type', '--state',
'--dport', '--destination-port', '-o', '-j', '--set-xmark',
'--to-source', '--to-destination']
str = ''