etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,592 Commits 330 Branches 325 Tags 855 MiB
Commit Graph

69 Commits

Author SHA1 Message Date
alena 73218e51f1 bug 11555: Fixed NPE happening during LB rule cleanup in case when createLB fails 
status 11555: resolved fixed

Reviewed-by: frank@cloud.com
 2011-09-23 11:01:31 -07:00
alena cdb80c76c1 bug 11537: revoke related FirewallRules when do vmExpunge and ipAddress release. 
status 11537: resolved fixed

Reviwed-by: edison@cloud.com
 2011-09-22 13:58:01 -07:00
alena a5a7103df6 bug 11462: 1) when delete PF rule, revoke corresponding firewall first (if exists) 2) never remove PF rule from the table when corresponding firewall rule wasn't removed yet 
status 11462: resolved fixed

Reviewed-by: edison@cloud.com
 2011-09-20 10:31:08 -07:00
alena 4c7a4181c0 bug 11246: return lb rule Id in the async response for createLoadBalancer api 
status 11246: resolved fixed
 2011-09-13 12:06:46 -07:00
keshav 37c74b35ab Support for inline SRX/F5. 2011-09-07 14:18:42 -07:00
alena e902599847 bug 11185: support multiple CIDR on overlapping port ranges for firewall rules 
status 11185: resolved fixed

Conflicts:

	server/src/com/cloud/network/firewall/FirewallManagerImpl.java
 2011-08-25 12:06:28 -07:00
alena 488b995299 bug 11236: domainAdmin/regularUser can edit/delete/copy/extract Public template/iso only if it was created by them. They still can use/see public template/iso when execute list/deploy/attachIso commands. Root admin can operate with other people templates w/o any restrictions. 
status 11236: resolved fixed
 2011-08-24 14:48:22 -07:00
alena d8a9612ef7 Remove firewall rule along with pf/staticNat/lb rule if the pf/staticNat/lb failed to create due to network rule conflict 2011-08-15 10:18:44 -07:00
alena 803255b0ba bug 11029: db upgrade from 2.2.9 to 2.2.10 includes firewall_rule upgrade now 
status 11029: resolved fixed

Commit also includes the following:

* map firewall rule to pf/lb/staticNat/vpn when the firewall rule is created as a part of pf/lb/staticNat/vpn rule creation
* when delete firewall rules, also delete related firewall rule
 2011-08-15 10:18:09 -07:00
alena fe3dd44bec ICMP protocol is supported in createFirewallRule command only; throw an error if specified in createPF/StaticNat/LB rule 2011-08-10 12:56:25 -07:00
Abhinandan Prateek 311afeae23 bug 10731: reverting back source cidr changes for loadbalancer and portforwarding 2011-08-09 16:01:48 +05:30
Chiradeep Vittal 179368ea32 get lb working on advanced mode again 2011-08-09 01:02:58 -07:00
Chiradeep Vittal 301bf049d1 fix compile issues 2011-08-08 22:03:08 -07:00
Chiradeep Vittal 924961d898 merge nectarine 2011-08-08 21:45:37 -07:00
alena 06d007337a bug 10561: intermidiate checkin for FirewallRuleFeature 
1) Added new apis: createFirewallRule, deleteFirewallRule, listFirewallRules
2) Modified existing apis - added boolean openFirewall parameter to createPortForwardingRule/createIpForwardingRule/createRemoteAccessVpn. If parameter is set to true, open firewall on the domR before creating an actual PF rule there
Modified backend calls appropriately.
3) Schema changes for firewall_rules table:
* startPort/endPort can be null now
* added icmp_type, icmp_code fields (can be not null only when protocol is icmp)
4) Added new manager - FirewallManagerImpl
 2011-08-08 20:59:40 -07:00
Chiradeep Vittal 8277584b8a merge ELB / nectarine branch 2011-08-08 15:20:56 -07:00
Chiradeep Vittal ec7c9a2f7e bug 10998: maintain lb id in map table 
status 10998: resolved fixed
 2011-08-05 17:37:11 -07:00
Chiradeep Vittal 8ccfdc08de handle release of ip on deletion of loadbalancer rule 2011-08-02 20:31:37 -07:00
Chiradeep Vittal 94be1584ac fix build, better names 2011-07-28 10:20:58 -07:00
Chiradeep Vittal fae6fa790c ELB VM: implement delete LB by deleting ELB vm 
in the future we will manage a pool of vms more intelligently
 2011-07-28 00:15:16 -07:00
Chiradeep Vittal b240c4a645 WIP: make creating an ELB bullet proof 2011-07-27 21:11:26 -07:00
Chiradeep Vittal 042c06fbb6 Make createLoadBalancer async 2011-07-27 12:00:08 -07:00
Chiradeep Vittal 07c2f6cdc7 differentiate between dhcp server and elb vm 2011-07-27 12:00:07 -07:00
Chiradeep Vittal cd8e069f80 Acquire an ip and launch an ELB vm 2011-07-27 12:00:07 -07:00
Abhinandan Prateek de34d6089d bug 10731: sending source cidrs to the required router element, on domR allowing these source cidrs thru iptables 
status 10731: resolved fixed
 2011-07-21 13:40:06 +05:30
kishan ddd416a492 bug 10382: wrapped usage events in txn 2011-07-20 11:19:39 +05:30
Abhinandan Prateek 24510cd5fb bug 10731: adding optional paramter for cidr 2011-07-19 12:10:48 +05:30
alena b9325a28dd bug 9579: allow domain name suffix update for existing networks. 
Block update only in these cases:

* when DNS capability AllowDnsSuffixModification is false for the network
* when target network has running network elements (dhcps or domRs)
 2011-06-09 16:10:24 -07:00
Edison Su 981c497e1f Don't apply @DB on a private method 2011-05-16 10:04:08 -04:00
Abhinandan Prateek a6fac0d768 added annotation and fixes 2011-05-09 19:41:13 +05:30
alena 1a6d78eae4 Code cleanup. No need to declare runtime exceptions (CloudRuntimeException, InvalidParameterException, PermissionDenied exceptions) 2011-04-21 16:26:53 -07:00
nit debe236a8d bug 8710: CONTD....Introducing a new user role in cloudstack called RESOURCE_DOMAIN_ADMIN. The role would have all the domain_admin rights and the rights to list zone,pods,clusters and so on. More info in the bug 2011-04-11 19:40:37 +05:30
alena 0fdcba3f4f bug 8855: introduced search by zoneId to listLoadBalancerRules api. Also added "zoneId" parameter to the response 
status 8855: resolved fixed
 2011-04-05 14:38:47 -07:00
alena 5dec433529 bug 9188: remove all lb-vm DB mapping that are set with Revoke status after the LB rule is set on the backend 
status 9188: resolved fixed
 2011-03-28 15:48:11 -07:00
alena 5d195b35c2 bug 9186: removeFromLoadBalancer - set firewall rule state to Add when the last Vm-LB mapping is removed 
status 9186: resolved fixed
 2011-03-28 13:20:05 -07:00
alena 95faeb620e bug 8863: generate usage event when PF/LB/StaticNat rule is set with Revoke status, not when it's actually removed on the backend. 
status 8863: resolved fixed
 2011-03-16 09:41:50 -07:00
alena b20fafeaa4 bug 8874: rebootVm - don't try to implement already implemented network 
status 8874: resolved fixed
 2011-03-07 10:23:48 -08:00
alena 62b3d548d6 bug 8753: never release public Ip address without ensuring that all corresponding resources (PF/StaticNat/Lb rules) are cleaned up. 
Fixed couple of other problems along:

* when expunge PF/Static nat rules as a part of vmExpunge/IpRelease process, first mark all rules as Revoke, and then send commands to the backend. Group commands by Ip address.
Before we used to do Revoke/Send per rule basis.
* When release source nat rule, make sure that corresponding vpn (if exists) is being expunged.
 2011-02-28 09:21:05 -08:00
alena 8978839d96 bug 8617: Disable firewall/lb/vpn service for Direct network offering, so when user tries to create PF/LB rule for direct IP address, it fails. 
status 8617: resolved fixed
 2011-02-17 14:31:05 -08:00
alena d80caf24fd bug 8564: Changed implementation for static nat rules. Now we use separate interfaces instead of PortForwardingRules interfaces. 
status 8564: resolved fixed
 2011-02-15 10:45:28 -08:00
alena 0082b8435a Fixed account security checks for domain admins in following commands: 
* listPortForwardingRules
* listIpForwardingRules
* listRemoteAccessVpns
* listVpnUsers
 2011-02-07 16:24:34 -08:00
alena 4fbcbda4d2 bug 8409: listLoadBalancers - for domain admins list only lbs belonging to their domains and subdomains 
status 8409: resolved fixed
 2011-02-04 18:12:04 -08:00
kishan 56f3343911 Added action events for VM, volume, Ip and snapshot actions 2011-02-04 19:59:41 +05:30
Murali Reddy ee1c53ecf3 Revert "bug 8327: successive removeFromLoadBalancerRule(s) renders LB rule dysfunctional" 
This reverts commit 368289aa12.
 2011-02-03 20:40:38 -08:00
alena 6f55c4dd7e bug 8270: Synchronize on 1) ipAddress object when create/delete ipForwarding/portForwardingRule and vpn service 2) on networkId when assignTo/removeFrom/deleteLoadBalancer 
status 8270: resolved fixed
 2011-02-03 18:45:49 -08:00
Murali Reddy 368289aa12 bug 8327: successive removeFromLoadBalancerRule(s) renders LB rule dysfunctional 
status 8327: resolved fixed
 2011-02-03 13:33:14 -08:00
kishan 6db6e8b4e9 Added action events for load balancer actions 2011-02-03 18:42:36 +05:30
alena 6544820e74 Moved networkRestart to the NetworkManager as it's up to the manager (not network elements) to decide what to do on restart (IpAssoc/ruleApply/etc..) 2011-02-01 12:16:19 -08:00
alena f6f8a35c75 bug 8251: introduced "id" field for public IP address. In the DB id is a primary key in user_ip_address table; ip_address and source_network_id is a composite key 
status 8251: resolved fixed
 2011-02-01 12:16:18 -08:00
alena 731e78937f Added 2 new api commands for 1-1 nat feauture: enable/disableOneToOneNat. Here is the 1-1 nat api summary: 
* to enable 1-1 nat for ip/vm use enalbeOneToOneNat api
* to open port range (or multiple port ranges) use createIpForwardingRule api.
* to delete one port range use deleteIpForwardingRule api.
* to disable 1-1 nat use disableOneToOneNat api.
 2011-01-26 09:35:32 -08:00