You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by "angeline shen (JIRA)" <ji...@apache.org> on 2013/02/21 01:59:13 UTC

[jira] [Commented] (CLOUDSTACK-1349) VPC network Adding Network ACls, PF rules - Unable to insert queue item into database, DB is full? PF rules and NW Acls in Add state in DB

    [ https://issues.apache.org/jira/browse/CLOUDSTACK-1349?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13582745#comment-13582745 ] 

angeline shen commented on CLOUDSTACK-1349:
-------------------------------------------

mysql> select * from firewall_rules;
+----+--------------------------------------+---------------+------------+----------+--------+----------+----------------+------------+-----------+------------+--------------------------------------+---------------------+-----------+-----------+---------+------+--------+--------------+
| id | uuid                                 | ip_address_id | start_port | end_port | state  | protocol | purpose        | account_id | domain_id | network_id | xid                                  | created             | icmp_code | icmp_type | related | type | vpc_id | traffic_type |
+----+--------------------------------------+---------------+------------+----------+--------+----------+----------------+------------+-----------+------------+--------------------------------------+---------------------+-----------+-----------+---------+------+--------+--------------+
|  1 | a7da2284-ec75-4b67-8372-76631d4b0ccb |          NULL |          1 |     8090 | Add    | tcp      | NetworkACL     |          2 |         1 |        205 | e81e8b80-ee1c-450a-96f9-4bec924dd389 | 2013-02-20 22:18:12 |      NULL |      NULL |    NULL | User |   NULL | Egress       |
|  2 | e55f7a74-8e70-4b2b-973c-40c7178f772f |          NULL |       NULL |     NULL | Add    | icmp     | NetworkACL     |          2 |         1 |        205 | fa610df3-7858-4cec-a59b-1e2e3c99049e | 2013-02-20 22:18:12 |        -1 |        -1 |    NULL | User |   NULL | Egress       |
|  3 | 7846bfff-845b-453e-b522-b05f6e5f22d2 |          NULL |          1 |     8090 | Add    | tcp      | NetworkACL     |          2 |         1 |        205 | adcbca45-fcb3-48ca-a68e-5e1d6e0042fb | 2013-02-20 22:18:12 |      NULL |      NULL |    NULL | User |   NULL | Ingress      |
|  4 | 8be12194-4b09-4bf7-becc-c7eacf31bde1 |          NULL |       NULL |     NULL | Add    | icmp     | NetworkACL     |          2 |         1 |        205 | b04ca650-be85-4d6e-9301-67875c0c4b9a | 2013-02-20 22:18:12 |        -1 |        -1 |    NULL | User |   NULL | Ingress      |
|  5 | 96481eee-b551-4bfe-ad31-8cadd7d90df0 |          NULL |          1 |     8090 | Active | tcp      | NetworkACL     |          2 |         1 |        204 | 50348375-b72a-4b3d-b7bb-2afd4c5de48c | 2013-02-20 22:22:16 |      NULL |      NULL |    NULL | User |   NULL | Ingress      |
|  6 | 3f9d7916-ae40-4edd-9755-5958b3bd644d |          NULL |       NULL |     NULL | Active | icmp     | NetworkACL     |          2 |         1 |        204 | 6111aacf-c11c-46ce-82be-1993098388c8 | 2013-02-20 22:22:23 |        -1 |        -1 |    NULL | User |   NULL | Ingress      |
|  7 | d65ef65f-2467-4157-98bd-6c1fb025e0db |          NULL |       NULL |     NULL | Active | icmp     | NetworkACL     |          2 |         1 |        204 | d4268efd-2cd7-4e28-95f3-42aae516152b | 2013-02-20 22:22:31 |        -1 |        -1 |    NULL | User |   NULL | Egress       |
|  8 | e88990c3-6c1b-415a-8300-2fb4c620ac8d |          NULL |          1 |     8090 | Active | tcp      | NetworkACL     |          2 |         1 |        204 | 9b978bcf-63ee-495a-8977-650d53973570 | 2013-02-20 22:23:13 |      NULL |      NULL |    NULL | User |   NULL | Egress       |
|  9 | f7777641-0b39-45d8-b164-c1678d2319f5 |             5 |         22 |       22 | Add    | tcp      | PortForwarding |          2 |         1 |        204 | de70eacd-d889-47cc-8b4d-984d45f54f56 | 2013-02-20 23:00:58 |      NULL |      NULL |    NULL | User |   NULL | NULL         |
| 10 | b8e47815-95c5-45a9-9d7f-60be9401aefd |             7 |         22 |       22 | Add    | tcp      | PortForwarding |          2 |         1 |        204 | 38eac65e-3a20-42b2-9cab-eb2045cb5eff | 2013-02-20 23:05:14 |      NULL |      NULL |    NULL | User |   NULL | NULL         |
+----+--------------------------------------+---------------+------------+----------+--------+----------+----------------+------------+-----------+------------+--------------------------------------+---------------------+-----------+-----------+---------+------+--------+--------------+



                
> VPC network Adding Network ACls,  PF rules  - Unable to insert queue item into database, DB is full? PF rules and NW Acls in Add state in DB
> --------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-1349
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-1349
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: Management Server
>    Affects Versions: 4.1.0
>         Environment: MS rhel 6.3 ASF 4.1
> host rhel6.3 KVM 
>            Reporter: angeline shen
>            Priority: Blocker
>             Fix For: 4.1.0
>
>         Attachments: management-server.log.gz, Screenshot-CloudStack - Mozilla Firefox-10.png, Screenshot-CloudStack - Mozilla Firefox-2.png, Screenshot-CloudStack - Mozilla Firefox-3.png, Screenshot-CloudStack - Mozilla Firefox-4.png, Screenshot-CloudStack - Mozilla Firefox-5.png, Screenshot-CloudStack - Mozilla Firefox-6.png, Screenshot-CloudStack - Mozilla Firefox-9.png
>
>
> MS rhel 6.3 ASF 4.1
> host rhel6.3 KVM
> 1. advance zone, download iso & installed
> http://nfs1.lab.vmops.com/isos_64bit/Windows-Server-2008/en_windows_server_2008_r2_standard_enterprise_datacenter_web_vl_build_x64_dvd_x15-59754.iso
>          download iso & installed
> http://nfs1.lab.vmops.com/isos_64bit/rhel-server-6.3-x86_64-dvd.iso
> 2. create VPC z1vpc1 create VPC networks:
>    z1vpc1G1
>    z1vpc1G2
>    z1vpc1G1: create VMs using centos5.6 templates - successful
>    z1vpc1G2: create VM z1vpc1G2adminw2008V5 using downloaded windows iso - fail
> 2013-02-20 14:47:45,647 DEBUG [cloud.network.NetworkModelImpl] (catalina-exec-7:null) Service SecurityGroup is not supported in the network id=205
> 2013-02-20 14:47:45,879 DEBUG [cloud.vm.UserVmManagerImpl] (catalina-exec-7:null) Allocating in the DB for vm
> 2013-02-20 14:47:45,933 ERROR [cloud.api.ApiServer] (catalina-exec-7:null) unhandled exception executing api command: deployVirtualMachine
> 3. In VPC z1vpc1 create 4 network ACLs for each of networks z1vpcG1 z1vpcG2:
>     TCP ingress rule ICMP ingress rule TCP egress rule ICMP egress rule
>   
>   Error result: UI displays dialog: Unable to insert queue item into database, DB is full?
>                       In UI: however network ACL entries were added
>    DB : shows some entries in ADD state, some in Active state
> 4. In VPC network z1vpc1G1 allocate IP addresses, add & assign PortFordwarding rules to VMs
>    
>     Error result: UI displays dialog: Unable to insert queue item into database, DB is full?
>                       In UI: PF rules were added & assigned to VMs
>    DB : shows entries in ADD state 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira