etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,859 Commits 331 Branches 327 Tags 811 MiB
Commit Graph

24 Commits

Author SHA1 Message Date
keshav 1761024fda Changed RuleTO classes to carry the source VLAN tag. Added guest network gateway to NetworkElementCommand. 2011-08-09 16:38:24 -07:00
alena 6b9603bc4c bug 10561: intermidiate checkin for FirewallRuleFeature 
1) Added new apis: createFirewallRule, deleteFirewallRule, listFirewallRules
2) Modified existing apis - added boolean openFirewall parameter to createPortForwardingRule/createIpForwardingRule/createRemoteAccessVpn. If parameter is set to true, open firewall on the domR before creating an actual PF rule there
Modified backend calls appropriately.
3) Schema changes for firewall_rules table:
* startPort/endPort can be null now
* added icmp_type, icmp_code fields (can be not null only when protocol is icmp)
4) Added new manager - FirewallManagerImpl

Conflicts:

	api/src/com/cloud/api/BaseCmd.java
	client/tomcatconf/commands.properties.in
	server/src/com/cloud/api/ApiResponseHelper.java
	server/src/com/cloud/configuration/DefaultComponentLibrary.java
	server/src/com/cloud/network/lb/LoadBalancingRulesManagerImpl.java
	server/src/com/cloud/network/rules/RulesManagerImpl.java
 2011-08-09 15:51:56 -07:00
Abhinandan Prateek dff712f2a9 bug 10731: sending source cidrs to the required router element, on domR allowing these source cidrs thru iptables 
status 10731: resolved fixed
 2011-07-21 13:48:42 +05:30
Abhinandan Prateek 57f41a3a05 bug 10731: added optional paramter source cidr 2011-07-19 12:21:39 +05:30
Abhinandan Prateek d752a94838 bug 8115: Source IP filtering in Virtual Router 
Passing the additional source cidrs paramter to the xapi.
 2011-05-12 13:37:43 +05:30
Abhinandan Prateek 2984b0607f bug 8115: source ip filtering 
Created a table for source cidrs list.
Created necessary Daos and VOs.
Updated PortForwardingRulesDao to persist/update non null list of cidrs.
For deletion depending on ON DELETE CASCADE.
 2011-05-09 17:41:50 +05:30
alena 62b3d548d6 bug 8753: never release public Ip address without ensuring that all corresponding resources (PF/StaticNat/Lb rules) are cleaned up. 
Fixed couple of other problems along:

* when expunge PF/Static nat rules as a part of vmExpunge/IpRelease process, first mark all rules as Revoke, and then send commands to the backend. Group commands by Ip address.
Before we used to do Revoke/Send per rule basis.
* When release source nat rule, make sure that corresponding vpn (if exists) is being expunged.
 2011-02-28 09:21:05 -08:00
alena d80caf24fd bug 8564: Changed implementation for static nat rules. Now we use separate interfaces instead of PortForwardingRules interfaces. 
status 8564: resolved fixed
 2011-02-15 10:45:28 -08:00
alena 0082b8435a Fixed account security checks for domain admins in following commands: 
* listPortForwardingRules
* listIpForwardingRules
* listRemoteAccessVpns
* listVpnUsers
 2011-02-07 16:24:34 -08:00
alena 6f55c4dd7e bug 8270: Synchronize on 1) ipAddress object when create/delete ipForwarding/portForwardingRule and vpn service 2) on networkId when assignTo/removeFrom/deleteLoadBalancer 
status 8270: resolved fixed
 2011-02-03 18:45:49 -08:00
alena f6f8a35c75 bug 8251: introduced "id" field for public IP address. In the DB id is a primary key in user_ip_address table; ip_address and source_network_id is a composite key 
status 8251: resolved fixed
 2011-02-01 12:16:18 -08:00
alena 731e78937f Added 2 new api commands for 1-1 nat feauture: enable/disableOneToOneNat. Here is the 1-1 nat api summary: 
* to enable 1-1 nat for ip/vm use enalbeOneToOneNat api
* to open port range (or multiple port ranges) use createIpForwardingRule api.
* to delete one port range use deleteIpForwardingRule api.
* to disable 1-1 nat use disableOneToOneNat api.
 2011-01-26 09:35:32 -08:00
alena a96f8f9575 Refactored 1-1 NAT feature: 
* added new fields to createIpForwardingRule api: startPort/protocol - required, endPort is optional
* updated "firewall_rules" table with a new field "is_one_to_one_nat" (being set when new rule is created)
 2011-01-25 14:43:32 -08:00
kishan fa2ae5793a bug 7341: introduced search by id and vmId for listIpForwardingRules 
status 7341: resolved fixed
 2011-01-19 13:13:09 +05:30
alena 085824d524 1) Updated schema for data_center - provider fields can have NULL values. 
2) Fixed deletePortForwarding/deleteIpForwardingRule commands to return false when delete rule fails.
 2010-12-28 16:22:36 -08:00
alena 88d6ff2136 bug 7467: release IP address works now. 
status 7467: resolved fixed

Fixed all load balancer commands to work with the latest networking code
 2010-12-10 15:12:32 -08:00
keshav d9f5e63f69 Added a constructor for LoadBalancerConfigCommand, and a variable to keep track of a list of destinations. 2010-12-09 21:28:10 -08:00
alena 1f7d74dbec 1) Disabled updatePortForwardingRule api command. 
2) Added vm information (id, name, display_text) to all port forwarding rule responses.
 2010-12-08 14:28:37 -08:00
Alex Huang fcdd20ca06 more checkin 2010-12-06 14:17:53 -08:00
Alex Huang b859e103d8 ip nat rule forwarding done 2010-12-03 08:48:03 -08:00
Alex Huang 9a70ee54f0 portforwarding is working 2010-12-03 08:48:03 -08:00
Alex Huang 223688d0bf Port forwarding rules and load balancing rules rewrite 2010-12-03 08:48:02 -08:00
Alex Huang 1e44925564 api refactoring 2010-11-21 12:00:21 -08:00
Alex Huang bb843ab1fb missing file 2010-11-19 15:48:40 -08:00