Bug 13429 - copy template FAIL - HTTP Server returned 403
lots of things:
1. generate a IP list of all SSVM across all zones, set this IP list to my .htaccess allowable from.
so other SSVMs get privilege to access me.
2. broadcast my IP to other SSVMs instructing them set me to theirs .htacess allowable from. so I get
privilege to access others
3. set outbound route for downloading through public IP. Because public ip/private ip in the same subnet in basic
zone, the http download traffic may come in through public ip but go outside through private ip which finally causes
the VM where the traffic is from to drop response packets. To resolve this, set individual route for each SSVM public
ip making sure the inter-communication between system vm happens through public IP
however, I met certificate expiraton on one SSVM, will report another bug
reviewed-by: Sheng.yang
status 13526: resolved fixed
status 13429: resolved fixed
increate timeout for sshcheck to 10 minutes
if sshcheck fails, finalizeCommandsOnStart fails, no exception
status 13338: resolved fixed
Conflicts:
server/src/com/cloud/network/router/VirtualNetworkApplianceManagerImpl.java
Changes:
- Added a new API 'migrateSystemVm' backed by MigrateSystemVMCmd.java to migrate system VMs (SSVM, consoleproxy, domain routers(router, LB, DHCP))
- This is Admin only action
- The existing API 'migratevirtualmachine' is only for user VMs
Conflicts:
api/src/com/cloud/api/ResponseGenerator.java
api/src/com/cloud/api/commands/ListHostsCmd.java
api/src/com/cloud/server/ManagementService.java
api/src/com/cloud/vm/UserVmService.java
server/src/com/cloud/api/ApiResponseHelper.java
server/src/com/cloud/server/ManagementServerImpl.java
Added two New values "all" and "default" to global config "network.loadbalancer.haproxy.stats.visibility" . With this change, it can take six possible value:
global - stats visible from public network.
guest-network - stats visible only to guestnetwork.
link-local - stats visible only to link local network(for xen and kvm).
disabled - stats disabled.
all - stats available on public,guest and link-local. (Newly added)
default - stats availble on the serving http port, this does need any specific http port.(Newly added)
Except default and disabled, all the rest of 4 need to configure the stats port.
Force stop the router would release all the resources it used, but router may
still running. Add a column "stop_pending" in the database, and stop it when the
router come back.
Admin would able to choose to force destroy such router, then recover the
network using restartNetwork command with cleanup=false.
frank
Edison Su
Kelven Yang
anthony
kishan
Nitin Mehta
Abhinandan Prateek
Alena Prokharchyk
Alex Huang
Abhinandan Prateek
root
Chiradeep Vittal
Nitin
prachi
Sheng Yang
alena
Edison Su
Naredula Janardhana Reddy