bug 11064: add setfirewallrule for kvm

2011-08-10 16:16:31 -07:00 · 2011-08-10 16:16:31 -07:00 · 790af4dcb3
parent a9fd65b9c3
commit 790af4dcb3
1 changed files with 38 additions and 0 deletions
--- a/core/src/com/cloud/agent/resource/virtualnetwork/VirtualRoutingResource.java
+++ b/core/src/com/cloud/agent/resource/virtualnetwork/VirtualRoutingResource.java
@ -52,6 +52,8 @@ import com.cloud.agent.api.routing.IpAssocAnswer;
 import com.cloud.agent.api.routing.LoadBalancerConfigCommand;
 import com.cloud.agent.api.routing.NetworkElementCommand;
 import com.cloud.agent.api.routing.SavePasswordCommand;
+import com.cloud.agent.api.routing.SetFirewallRulesAnswer;
+import com.cloud.agent.api.routing.SetFirewallRulesCommand;
 import com.cloud.agent.api.routing.SetPortForwardingRulesAnswer;
 import com.cloud.agent.api.routing.SetPortForwardingRulesCommand;
 import com.cloud.agent.api.routing.SetStaticNatRulesAnswer;
@ -121,6 +123,8 @@ public class VirtualRoutingResource implements Manager {
                return execute ((VmDataCommand)cmd);
            } else if (cmd instanceof CheckRouterCommand) {
                return execute ((CheckRouterCommand)cmd);
+            } else if (cmd instanceof SetFirewallRulesCommand) {
+                return execute((SetFirewallRulesCommand)cmd);
            } else {
                return Answer.createUnsupportedCommandAnswer(cmd);
            }
@ -129,6 +133,40 @@ public class VirtualRoutingResource implements Manager {
        }
    }

+    private Answer execute(SetFirewallRulesCommand cmd) {
+        String[] results = new String[cmd.getRules().length];
+        for (int i =0; i < cmd.getRules().length; i++) {
+            results[i] = "Failed";
+        }
+        String routerIp = cmd.getAccessDetail(NetworkElementCommand.ROUTER_IP);
+
+        if (routerIp == null) {
+            return new SetFirewallRulesAnswer(cmd, false, results);
+        }
+
+        String[][] rules = cmd.generateFwRules();
+        final Script command = new Script(_firewallPath, _timeout, s_logger);
+        command.add(routerIp);
+        command.add("-F");
+        
+        StringBuilder sb = new StringBuilder();
+        String[] fwRules = rules[0];
+        if (fwRules.length > 0) {
+            for (int i = 0; i < fwRules.length; i++) {
+                sb.append(fwRules[i]).append(',');
+            }
+            command.add("-a", sb.toString());
+        }
+       
+        String result = command.execute();
+        if (result != null) {
+            return new SetFirewallRulesAnswer(cmd, false, results);
+        }
+        return new SetFirewallRulesAnswer(cmd, true, null);
+        
+        
+    }
+
    private Answer execute(SetPortForwardingRulesCommand cmd) {
        String routerIp = cmd.getAccessDetail(NetworkElementCommand.ROUTER_IP);
        String[] results = new String[cmd.getRules().length];