618d2541c8
CS-6840: Add status checking for site 2 site VPN
2012-06-29 18:58:52 -07:00
66a918f51a
CS-6840: List all objects without require parameter
2012-06-28 15:25:15 -07:00
23c96451a7
CS-6840: Add hypervisor commands for site-to-site vpn
2012-06-27 19:06:32 -07:00
8670b703d2
CS-6840: Add Site2SiteVpnServiceProvider
2012-06-27 19:05:48 -07:00
52e80e5fb0
CS-6840: Add commands for site-to-site vpn
2012-06-27 19:05:41 -07:00
a65655e559
VPC: as there is no support for FirewallRules/remoteAccessVPN in the VPC, removed the networkId from the list of parameters for corresponding api calls
2012-06-27 14:09:33 -07:00
84a4a7c1c8
VPC: update ip address object after the ip is associated with the network
2012-06-25 16:26:19 -07:00
ddae550a55
AssociateIpAddress to VPC - the ip gets associated to the network only when the first rule for the ip gets created.
...
When the last rule is removed for vpc ip, networkId is set to null
2012-05-30 19:46:40 -07:00
72d284de7d
Switch to Apache license
2012-04-03 04:54:14 -07:00
dcf96fe0c8
Bug 13802: Log VPN user remove usage event when user fails to get applied
...
Status 13802: resolved fixed
Reviewed-By: Nitin
2012-02-17 17:35:59 +05:30
17659d1500
Bug 12972: Added VPN_USER_REMOVE usage events when VPN is disabled. VPN_USER_ADD events added when VPN is enabled again. VPN usage will be generated only when VPN is enabled.
...
Status 12972: resolved fixed
Reviewed-By: Nitin
2012-02-08 19:57:08 +05:30
cad392cd68
bug 13335: fixed listProjectInvitations by projectId
...
status 13335: resolved fixed
2012-02-07 13:16:27 -08:00
83400cd15f
bug 12776: if there are multiple objects involved in resource creation, verify that they belong to the same account
...
status 12776: resolved fixed
2012-01-17 13:40:37 -08:00
f0c4980dff
bug 13110: use Ternary data structure when build search criteria
...
status 13110: resolved fixed
2012-01-16 14:15:28 -08:00
c581506103
bug 12306: list* command revamp
2012-01-09 10:07:42 -08:00
89ca2fe48e
bug 12656: Add restriction for network update and new rules
...
status 12656: resolved fixed
2012-01-05 21:08:41 -08:00
1871de3048
bug 11853: better error message when try to add VPN user with duplicated user name
...
status 11853: resolved fixed
2011-11-18 15:49:18 -08:00
f6fcaa49ec
Merge complete except for virtualnetworkappliancemanager
2011-11-10 15:18:16 -08:00
606779b300
bug 11851: When Add VPN user fails, remove the user entry from db instead of leaving in Add state.
...
status 11851: resolved fixed
reviewed-by: Abhi
2011-11-08 15:56:16 +05:30
3a845d2d75
Keep Service/Provider map per network as well as per networkOffering (to handle the case when there are multiple providers defined for the same service in the network offering, and only one is picked when the network is created)
2011-11-07 16:16:03 -08:00
17a7b7cda4
listNetworkOfferings: added an ability to filter based on the Services supported
2011-11-07 10:53:28 -08:00
f40dcbd82e
bug 11851: While adding new Vpn user, exisitng users state will remain as Active and still be re-added
...
status 11851: resolved fixed
2011-11-04 13:58:14 +05:30
18ef8ca3b4
bug 11173: Added usage for VPN users
...
status 11173: resolved fixed
2011-11-01 17:01:48 +05:30
f6717e0a23
1) Method name change
...
2) Rely on SourceNatService when decide if DirectNetworkGuru and GuestNetworkGuru should handle the network
2011-10-24 17:30:14 -07:00
0121c0516d
Network: Add Service providers
...
In the past, the NetworkElement would cover almost all the functionality that
e.g. virtual router can cover: firewall, source NAT, static NAT, password,
VPN... So anyone want to implement the NetworkElement would have to implement
these service's specific methods, even it wouldn't support it. Also, if we want
to find a e.g. FirewallServiceProvider, we have to proceed all the current
network service providers, to call a method to know if it support such service.
That's neither elegant nor scaling way to do it.
As the first step, this patch separates each ServiceProvider from NetworkElement
(there are some interface already out of NetworkElement, so this patch slightly
modifies them too), and only the class would implement the correlated interface, would
have the ability to do these services.
2011-10-10 11:45:39 -07:00
25c2734e03
More stuff to Projects feature - added support for adding resources (vms, templates, isos) to the project
2011-10-05 13:24:25 -07:00
4d89066b2c
bug 11515: reapply all firewall rules for the IP address when VPN related rules are being revoked
...
status 11515: resolved fixed
Reviewed-by: will@cloud.com
2011-09-21 09:50:32 -07:00
a1331d1cfc
Intermidiate checkin to Project feature:
...
1) Introduce new managers - ProjectManager and DomainManager. Moved all domain related code from AccountManager to DomainManager.
2) Moved some code from ManagementServerImpl to the correct managers.
3) New resource limit for Domain - Project
2011-09-20 18:35:28 -07:00
8c53dbcdd7
bug 11185: support multiple CIDR on overlapping port ranges for firewall rules
...
status 11185: resolved fixed
Conflicts:
server/src/com/cloud/network/firewall/FirewallManagerImpl.java
Conflicts:
api/src/com/cloud/network/firewall/FirewallService.java
server/src/com/cloud/network/firewall/FirewallManagerImpl.java
server/src/com/cloud/network/lb/LoadBalancingRulesManagerImpl.java
server/src/com/cloud/network/rules/RulesManagerImpl.java
2011-08-25 12:21:11 -07:00
e3f179844e
bug 11236: domainAdmin/regularUser can edit/delete/copy/extract Public template/iso only if it was created by them. They still can use/see public template/iso when execute list/deploy/attachIso commands. Root admin can operate with other people templates w/o any restrictions.
...
status 11236: resolved fixed
2011-08-24 14:48:35 -07:00
803255b0ba
bug 11029: db upgrade from 2.2.9 to 2.2.10 includes firewall_rule upgrade now
...
status 11029: resolved fixed
Commit also includes the following:
* map firewall rule to pf/lb/staticNat/vpn when the firewall rule is created as a part of pf/lb/staticNat/vpn rule creation
* when delete firewall rules, also delete related firewall rule
2011-08-15 10:18:09 -07:00
06d007337a
bug 10561: intermidiate checkin for FirewallRuleFeature
...
1) Added new apis: createFirewallRule, deleteFirewallRule, listFirewallRules
2) Modified existing apis - added boolean openFirewall parameter to createPortForwardingRule/createIpForwardingRule/createRemoteAccessVpn. If parameter is set to true, open firewall on the domR before creating an actual PF rule there
Modified backend calls appropriately.
3) Schema changes for firewall_rules table:
* startPort/endPort can be null now
* added icmp_type, icmp_code fields (can be not null only when protocol is icmp)
4) Added new manager - FirewallManagerImpl
2011-08-08 20:59:40 -07:00
8d47c53735
Revert "bug 10435: removed vpn feature"
...
This reverts commit ea9e1b5d138950e8de49fce7ffdbb12a1c72c560.
Conflicts:
api/src/com/cloud/api/ResponseGenerator.java
scripts/vm/hypervisor/xenserver/vmops
server/src/com/cloud/configuration/Config.java
server/src/com/cloud/network/router/VirtualNetworkApplianceManager.java
server/src/com/cloud/network/router/VirtualNetworkApplianceManagerImpl.java
2011-08-02 18:12:57 -07:00
74f34a0e0c
bug 10435: removed vpn feature
...
status 10435: resolved fixed
2011-06-24 09:18:46 -07:00
b9325a28dd
bug 9579: allow domain name suffix update for existing networks.
...
Block update only in these cases:
* when DNS capability AllowDnsSuffixModification is false for the network
* when target network has running network elements (dhcps or domRs)
2011-06-09 16:10:24 -07:00
debe236a8d
bug 8710: CONTD....Introducing a new user role in cloudstack called RESOURCE_DOMAIN_ADMIN. The role would have all the domain_admin rights and the rights to list zone,pods,clusters and so on. More info in the bug
2011-04-11 19:40:37 +05:30
504ab73ae5
Sync on network instead of ipAddressId when do create PF/StaticNat/LB rules
2011-02-17 16:13:28 -08:00
8978839d96
bug 8617: Disable firewall/lb/vpn service for Direct network offering, so when user tries to create PF/LB rule for direct IP address, it fails.
...
status 8617: resolved fixed
2011-02-17 14:31:05 -08:00
b92fc074aa
added forced paramter to stop apis
2011-02-08 15:38:26 -08:00
0082b8435a
Fixed account security checks for domain admins in following commands:
...
* listPortForwardingRules
* listIpForwardingRules
* listRemoteAccessVpns
* listVpnUsers
2011-02-07 16:24:34 -08:00
6f55c4dd7e
bug 8270: Synchronize on 1) ipAddress object when create/delete ipForwarding/portForwardingRule and vpn service 2) on networkId when assignTo/removeFrom/deleteLoadBalancer
...
status 8270: resolved fixed
2011-02-03 18:45:49 -08:00
6544820e74
Moved networkRestart to the NetworkManager as it's up to the manager (not network elements) to decide what to do on restart (IpAssoc/ruleApply/etc..)
2011-02-01 12:16:19 -08:00
f6f8a35c75
bug 8251: introduced "id" field for public IP address. In the DB id is a primary key in user_ip_address table; ip_address and source_network_id is a composite key
...
status 8251: resolved fixed
2011-02-01 12:16:18 -08:00
94ec7bf27a
bug 7842: events refactoring. Still wrok in progress
2011-01-20 21:49:50 +05:30
0b7a15ab99
bug 7348: reapply PortForwardingRules (including 1-1 Nat), LB rules, Vpn as a part of domr Stop/Start
...
status 7348: resolved fixed
More fixes:
* Update user_statistics on each domR stop/reboot
* Reset dhcpData/userData as a part of domR stop/reboot
* More logging for domR commands
2011-01-03 23:00:05 -08:00
d18eaa840e
bug 7798: removed vpn events generation from RemoteAccessVpnManagerImpl as we already generate it in ApiDispatcher code.
...
status 7798: resolved fixed
2011-01-03 23:00:05 -08:00
bd788b1827
Fixed RemoteAccessVpn apis
2010-12-29 21:36:44 -08:00
de6b9eb0e2
- Fixed NPE caused when calling listRemoteAccessVpn API command with no vpn record in DB.
...
- Fixed UI to pass in ipaddress when you create/delete remote access vpn.
2010-12-29 21:14:48 -08:00
a10ce22f99
remote access vpn from management server side is done
2010-12-29 12:13:35 -08:00
544fa7ff1b
remote access vpn, user ip address changes
2010-12-29 09:32:54 -08:00
Sheng Yang
Alena Prokharchyk
frank
kishan
Sheng Yang
Alex Huang
alena
nit
Alex Huang
will