etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,988 Commits 323 Branches 325 Tags 951 MiB
Commit Graph

6988 Commits

Author SHA1 Message Date
Naredula Janardhana Reddy 00dbaf0954 bug 10561: allowing to create a firewall rule with sameport range but different protocols 2011-08-12 12:54:41 +05:30
Sheng Yang c30faf8b53 bug 11083: Fix broadcast address is 0.0.0.0 
The reason is:
1. In redundant router, we won't enable eth2(public network interface) until
keepalived determine the router is MASTER.
2. ipassoc.sh normally kick in before keepalived process running. And it would
set eth2's IP address using "ip addr add $dev $ip"
3. "ip addr add $dev $ip" won't add mask for the device, then there is no way to
update broadcast address for eth2. Then broadcast address is 0.0.0.0.
4. As long as "ip addr add $dev $ip" executed, later executed "ifconfig $dev $ip
netmask $mask" won't calculated the broadcast address from $ip and $mask.

To fix this, we enable and configure eth2 temporaily when cloud-early-config
executed, then disable eth2 interface. By this way, broadcast address of should
be calculated and set correctly.

status 11083: resolved fixed
 2011-08-12 00:04:57 -07:00
Sheng Yang b560880907 Add alert and log for redundant router state change 2011-08-11 23:36:31 -07:00
Chiradeep Vittal 34ffbdfceb bug 11084: ensure AH and ESP protocols are allowed in when creating a VPN 2011-08-11 18:24:02 -07:00
alena 4530d35bc5 bug 11029: db upgrade from 2.2.9 to 2.2.10 includes firewall_rule upgrade now 
status 11029: resolved fixed

Commit also includes the following:

* map firewall rule to pf/lb/staticNat/vpn when the firewall rule is created as a part of pf/lb/staticNat/vpn rule creation
* when delete firewall rules, also delete related firewall rule
 2011-08-11 18:09:08 -07:00
Kelven Yang a3ad26ed89 Disable HA in CloudStack HA manager under VMware 2011-08-11 18:07:57 -07:00
Sheng Yang 0387b6e802 Redundant router script fix, also fix CheckRouterTask 2011-08-11 17:56:28 -07:00
Chiradeep Vittal e4092e8084 do not release ip for advanced networking / regular LB usage 2011-08-11 17:44:03 -07:00
Jessica Wang e3b35e8d95 bug 10843: cloudStack - Instance page - statistics tab - show "N/A" when NetworkRead/NetworkWrite is null or equal to zero. 2011-08-11 16:26:47 -07:00
Jessica Wang 1205206ed2 bug 10843: cloudStack - Instance page - statistics tab - show "N/A" when NetworkRead/NetworkWrite is equal to zero. (2) 2011-08-11 16:11:59 -07:00
alena 5080e8ba33 No need to apply static nat for ip which is not static nat enabled 2011-08-11 16:00:16 -07:00
Jessica Wang 4d86929eb5 bug 10843: cloudStack - Instance page - statistics tab - show "N/A" when NetworkRead/NetworkWrite is equal to zero. 2011-08-11 15:42:38 -07:00
Jessica Wang edcc962a3b bug 8053: cloudStack - volume page - hide Download Volume action for volume whose state is Allocated (newly created volume). 2011-08-11 15:23:44 -07:00
Sheng Yang a935e52b62 Ifdown may not bring interface down if ifup not run 
Use ifconfig to bring it down
 2011-08-11 15:00:43 -07:00
Jessica Wang 45a927b3d5 bug 11070: cloudStack - delete cluster/host/network/pod/primaryStorage/secondaryStorage/zone - fix a bug that an API error showed after account was deleted ("listxxxxxxx&id=N") 2011-08-11 14:52:04 -07:00
Chiradeep Vittal f91d173511 bug 10561: handle icmp (finally\!) 2011-08-11 14:36:41 -07:00
Sheng Yang 95cc2d6381 Use ifup/ifdown for redundant router 2011-08-11 14:29:49 -07:00
Sheng Yang b63b3fcf05 Skip the null Host for CheckRouterTask 2011-08-11 14:29:49 -07:00
Jessica Wang 0fcd364412 bug 11070: cloudStack - delete diskOffering/serviceOffering - fix a bug that an API error showed after account was deleted ("listxxxxxxx&id=N") 2011-08-11 14:29:23 -07:00
Kelven Yang 9e1ee30ea3 bug 11019: Let VM sync to coordinate with possible VM-relocation under VMware when VM is in starting time 2011-08-11 14:28:39 -07:00
Jessica Wang ac62f290d3 bug 11070: cloudStack - delete domain/IPAddress/SecurityGroup/snapshot/volume - fix a bug that an API error showed after account was deleted ("listxxxxxxx&id=N") 2011-08-11 14:24:08 -07:00
alena 10034bc196 Fixed rule validation for static nat rules 2011-08-11 14:03:49 -07:00
Jessica Wang a73c6edcb9 cloudStack - IP Address page - take "firewallRuleUiEnabled" from listcapabilitiesresponse to determine to show/hide network tab. 2011-08-11 13:45:55 -07:00
Chiradeep Vittal 9083bbcb47 bug 11084: enable firewall ports for vpn by default 2011-08-11 13:30:24 -07:00
Jessica Wang aea70fab01 cloudStack - IP Address page - hide network tab for system-owned IP. 2011-08-11 13:11:10 -07:00
Sheng Yang f28291cedb Fix redundant router switch back to single router 
The existed redundant router network didn't change.
 2011-08-11 12:48:56 -07:00
Chiradeep Vittal 88a1c69413 bug 10561: get static nat working 2011-08-11 12:41:21 -07:00
Jessica Wang aa1e09224d cloudStack - IP Address page - for elasticLB-basicZone, do not open firewall when creating load balancer rule and IP. 2011-08-11 11:57:46 -07:00
keshav d47eb46faf Added parameter to enable the firewall rule UI to the list capabilities API. 2011-08-11 11:42:02 -07:00
Chiradeep Vittal d1ec7e759b remove cruft 2011-08-11 11:26:45 -07:00
Chiradeep Vittal d54c3dab57 fix firewall script. FIXME: make this 2 different scripts 2011-08-11 11:26:45 -07:00
alena 477e5d6389 bug 10561: reapply static nat on the backend as a part of domR restart and network restart 2011-08-11 11:19:09 -07:00
Jessica Wang 0504832425 bug 11070: cloudStack - delete account - fix a bug that an API error showed after account was deleted ("listAccounts&id=N") 2011-08-11 11:01:45 -07:00
Sheng Yang 8b405e477c Fix sometime system VM is up but mgmt server can't reach it 2011-08-11 10:57:05 -07:00
Alex Huang 1079a77024 bug 11043: rverted the bad fix 2011-08-11 10:27:02 -07:00
alena 278f2a401f bug 10561: intermediate checkin for enable/disableStaticNat. 
1) On enableStaticNat command we actually send the command to the backend (we used to just upgrade the DB in the past). The backend command carries sourceIp and destIp, and creates IP to IP mapping on the domR.
2) On disableStaticNat for the Ip address in addition to cleaning up port ranges, we also delete IP to IP mapping on the domR.
 2011-08-11 10:19:22 -07:00
Naredula Janardhana Reddy 7c2395e684 bug 10561: fix: last entry in the firewall rules unable to delete 2011-08-11 19:01:36 +05:30
Naredula Janardhana Reddy 699b197a3c bug 10561: changes to the create/delete firewall rule backend script: 
1) changes to the return value
    2) added a FIXME to one the leak.
 2011-08-11 16:53:18 +05:30
Chiradeep Vittal 35e67bbfdf bug 10561: ensure outgoing connections work 2011-08-10 23:16:04 -07:00
Chiradeep Vittal 17a8234140 should be able to apply firewall rules to static natted ips 2011-08-10 22:53:07 -07:00
Chiradeep Vittal b33f08053c bug 11072: one more 2011-08-10 22:04:21 -07:00
Chiradeep Vittal 375da4da1a bug 11072: icky icky icky 2011-08-10 20:40:13 -07:00
Jessica Wang 25407543b0 bug 11016: cloudStack - Host page - add "host tags" in grid. 2011-08-10 20:06:03 -07:00
Jessica Wang e39a9eca7d bug 11065: cloudStack - cluster page - remove action "Manage Cluster" and "Unmanage Cluster". 2011-08-10 19:53:51 -07:00
alena e874109839 bug 11071: when elb service is enabled, don't check supported protocols as the provider is NULL in data_center table 
status 11071: resolved fixed
 2011-08-10 19:25:04 -07:00
Jessica Wang 522d490627 cloudStack - IP Address page - add a new tab "Firewall". 2011-08-10 19:21:11 -07:00
Jessica Wang 007c4a8d8e cloudStack - add new localization labels. 2011-08-10 19:21:10 -07:00
Jessica Wang 8ea68aa196 cloudStack - IP Address page - port forwarding, port range - remove protocol option "ICMP". 2011-08-10 19:21:09 -07:00
alena 0805dbd3fb Fixed rule validation for ICMP protocol 2011-08-10 19:11:26 -07:00
Chiradeep Vittal d29b01ca7f bug 10561: backend rules for firewall 2011-08-10 18:39:52 -07:00