etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,757 Commits 334 Branches 325 Tags 889 MiB
Commit Graph

44 Commits

Author SHA1 Message Date
Naredula Janardhana Reddy 954d8673c7 bug 10561: Allowing ICMP traffic through static NAT 2011-08-03 18:13:09 +05:30
Naredula Janardhana Reddy 2fc7be14de bug 10557: implemented the TODO - opening the stats port using iptable 2011-07-28 17:24:10 +05:30
Naredula Janardhana Reddy e19c51e68c bug 10800: iptable rable restore upon failure is changed 2011-07-28 13:43:07 +05:30
Kelven Yang 9761661989 bug 10855: fix a typo when merging git conflicts 2011-07-26 10:50:33 -07:00
Kelven Yang db29f7792c bug 10855: the issue is caused by expanding content that has space inside at sub-shell, use back quote substitution to enforce the correct shell macro expansion 2011-07-26 10:50:10 -07:00
Naredula Janardhana Reddy 67dc2ec915 bug 10800: Load balancer - deleted settings from UI not removed from the Iptables 2011-07-26 15:28:01 +05:30
Edison Su 3a17b37808 fix meta data returning 404 issue on vmware 2011-07-25 21:17:42 -07:00
Abhinandan Prateek dff712f2a9 bug 10731: sending source cidrs to the required router element, on domR allowing these source cidrs thru iptables 
status 10731: resolved fixed
 2011-07-21 13:48:42 +05:30
Edison Su a622b48d32 It breaks port forwording. 
Revert "bug 10329: changed - t :"

This reverts commit 16779afa0233e6ff33cdfca12611e6a43bcd0b42.
 2011-07-08 13:52:49 -07:00
Edison Su 399c1addb9 fix meta issue for vmware: create a blank meta data file, even meta data is empty 2011-07-08 13:51:30 -07:00
Abhinandan Prateek 6b7279598e bug 10329: changing - to : in port range 
status 10329: resolved fixed
 2011-07-07 11:46:17 +05:30
Sheng Yang dc46ffb0c7 bug 9154: various fix for scripts 2011-06-22 15:30:39 -07:00
Sheng Yang bbb0f41a92 Fix ipassoc.sh with new added nic 
The script should bring the new created interface up.
 2011-06-20 17:21:32 -07:00
Sheng Yang d71ed00148 bug 9154: Add more log in keepalived.log 2011-06-15 15:39:48 -07:00
Kelven Yang dae72c26b0 bug 10093: always create .htaccess in DomR 2011-06-08 16:56:41 -07:00
Sheng Yang 5db86e6c20 Fix CheckRouterAnswer's isMaster report 
If we got invalid/unsuccessed answer from CheckRouterAnswer, set master to
false.

Also add missed scripts.
 2011-06-07 14:47:46 -07:00
Sheng Yang 819e67b189 Add file lock for keepalived scripts 
They are not blocked callings.
 2011-06-07 14:47:46 -07:00
Sheng Yang 2973ab5ef5 Enable multiply public ips for redundant router 
Also solve duplicate mac issue.
 2011-06-07 14:47:46 -07:00
Sheng Yang 62ac899091 bug 9154: Initial check in for enabling redundant virtual router 
This patch enable redundant virtual routers.

1. To enable this feature, db need to be updated using follow SQL by now(we
would get a UI way later):

UPDATE network_offerings SET redundant_router=1 WHERE guest_type="Virtual" AND
system_only=0;

2. System would try to start up two routers at different hosts. But if there is
only one host in the zone, system would start up two routers on it.

3. The failover part is using keepalived, and connection tracking part is using
conntrackd. There would be one master router and one backup router. The status
of router(master or backup) can be query from the database table domain_router
now. Management server would update the status every 30s by default.

4. The routers for the same zone would use same external NIC(same ip and mac).
The script used for fail-over would ensure only one external NIC present in the
network at any time.

5. Currently management server don't got the ability to stop one of router is
both of them reported as master. The feature is in the todo list.

After two routers start up, disconnect anyone of them, the guest network
shouldn't be affected, and established connection(http, ssh, etc.) should still
works. The fail-over on gateway part should be 3~4 seconds.

Currently the patch works with KVM. Would deal with vmware and XenServer soon.
 2011-06-07 14:47:45 -07:00
Abhinandan Prateek 6707048fd5 bug 9869: if several port forwarding rules are deleted in quick succession it makes the router iptables inconsistent 
status 9869: resolved fixed
 2011-05-16 13:49:24 +05:30
Chiradeep Vittal 8ac4605a0f bug 9771: also for vmware 2011-05-12 15:07:16 -07:00
Abhinandan Prateek d8b7f5c19b bug 8115: Source IP filtering in Virtual Router 
status 8115: resolved fixed

Changes to the router firewall.sh patch to add cidrs
 2011-05-12 15:20:00 +05:30
Chiradeep Vittal 515981a436 bug 9544: deal with same ports forwarded from different public ips 
status 9544: resolved fixed
 2011-05-05 16:49:49 -07:00
Frank 92155522f2 Add license header to files 2011-04-14 11:23:14 -07:00
Kelven Yang 253b8837b4 Fix a problem in userdata.sh to set permissions in .htaccess file, extra quot cause apache internal server error 2011-04-12 14:37:09 -07:00
Chiradeep Vittal 1e6024b83f bug 8959: 1. rp_filter prevents connections that span eth2 and eth3 because of default route 
2. delete before add of default nat rules
status 8959: resolved fixed
 2011-04-04 18:59:40 -07:00
Kelven Yang 342648244d bug 8994: fix issues in userdata.py to support user_data in vmware 2011-03-23 13:34:40 -07:00
Chiradeep Vittal 10dc1c75d8 bug 8370: pass in original params when calling delete during add 
status 8370: resolved fixed
 2011-02-08 16:41:27 -08:00
Edison Su 99c6d823b0 fix setting port forword rules 2011-02-08 14:50:58 -05:00
Chiradeep Vittal 711c4eeaae bug 8209,8370,8459: cleanup scripting 2011-02-08 12:10:07 -08:00
Chiradeep Vittal 757bd0b5e4 bug 8254: point save password to right location 2011-01-28 16:01:52 -08:00
Kelven Yang 6fe42d144f remove escapes in awk scripts when it is running inside domR 2011-01-13 14:28:06 -08:00
Kelven Yang 55f28c3a2b Network Usage for vmware 2011-01-13 11:24:15 -08:00
Kelven Yang 1689ed8150 1) Add vmwapre library jars to deps and purposely left vmware-axis.jar behind to use cloud-axis.jar instead, this is to solve the conflict between iControl.jar 
2) Fix issues in setting user_data python implementation for vmware
 2010-12-11 11:08:39 -08:00
abhishek 1aee756184 bug 7345: During the expunge operation, we were not calling the deleteipforwardingrule method, for a rule which was static nat. Adding that logic. Also, making a change in the domr script as we do not need to execute a line on deletion of a rule 
status 7345: resolved fixed
 2010-11-30 10:07:10 -08:00
Chiradeep Vittal de49fbad6f 1-1-NAT feature broke regular NAT, fixing 2010-11-18 14:05:03 -08:00
abhishek 1faaba8fb0 fixed a corner case; also changed the commands to be async and changed the method signatures to conform with the master refactor 2010-11-11 13:07:26 -08:00
abhishek 239942bbe1 refactored all the commands to cater to keshav's needs, and added the new apis. the initial set of testing is complete, will now focus on corner cases 2010-11-11 13:07:26 -08:00
Kelven Yang 4e7870aea1 remove a python log statement from userdata.py 2010-11-10 14:51:13 -08:00
Kelven Yang 1c702a1d69 1) As the lack of dom0 scripting support in vmware hyperviors, domR, and other system VM will fall back to private network interface instead of link local interface, accordingly, 
domR scripting will be running directly inside domR and be driven from management server instead of dom0 host
2) firewall/sshd setting changes for #1
 2010-10-21 21:46:41 -07:00
Kelven Yang c5116b5e07 add and modify ipassoc.sh to domR, let it run within domR for vmware support 2010-10-21 10:41:41 -07:00
Kelven Yang 58cc90c10f 1) Modify domain router manager to support vmware 
2) Add python and shell scripts for domr to support vmware
 2010-10-20 18:49:18 -07:00
anthony 121d29211e update new keypair 2010-10-15 15:50:53 -07:00
edison e67e7d0e7b remove patches/systemv, and mv tools/systemvm into patches 2010-10-05 20:41:39 -07:00