You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by Bharat Kumar <bh...@citrix.com> on 2015/09/03 12:13:33 UTC
Re: [Blocker/Critical] VR related Issues
Hi,
found few more issues related to rvr in isolated networks.
There seems to be a problem with the keepalived config and setting up of default routes when rvr changes states.
created bugs for these issues.
CLOUDSTACK-8798<https://issues.apache.org/jira/browse/CLOUDSTACK-8798>
CLOUDSTACK-8799<https://issues.apache.org/jira/browse/CLOUDSTACK-8799>
Thanks,
Bharat.
On 12-Aug-2015, at 10:52 am, Bharat Kumar <bh...@citrix.com>> wrote:
Hi,
looks like there is one more issue. Conntrackd fails to start in case of rvr enabled isolated networks.
created a bug to track this. https://issues.apache.org/jira/browse/CLOUDSTACK-8725
Thanks,
Bharat.
On 11-Aug-2015, at 3:03 pm, Kishan Kavala <Ki...@citrix.com>> wrote:
Below VR related issues currently open. Most of these issues did not exist in 4.5.x and are related to VR refactor (persistent VR).
Blocker
https://issues.apache.org/jira/browse/CLOUDSTACK-8690 - Remote Access VPN not working
Critical
https://issues.apache.org/jira/browse/CLOUDSTACK-8688 - Default policy for INPUT and FORWARD chain is ACCEPT in VR filter table (Wilder is working on this)
https://issues.apache.org/jira/browse/CLOUDSTACK-8681 - CS does not honor the default deny egress policy in isolated network
https://issues.apache.org/jira/browse/CLOUDSTACK-8710 - site2site vpn iptables rules are not configured on VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8685 - Default route is not configured on VPC VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8694 - Monitor service cron job not visible
RE: [Blocker/Critical] VR related Issues
Posted by Raja Pullela <ra...@citrix.com>.
Here is an update on the Automation being run on master - currently, passrates look pretty bad.
I am still in the process of creating/correlating existing defects to the failures.
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Automation+Results+-+Release+4.6.0
BTW, majority of the failures seem to be VR related.
Please let me know if you have any questions,
Raja
-----Original Message-----
From: Wilder Rodrigues [mailto:WRodrigues@schubergphilis.com]
Sent: Tuesday, September 8, 2015 6:43 PM
To: dev@cloudstack.apache.org
Cc: Remi Bergsma <RB...@schubergphilis.com>; Miguel Ferreira <MF...@schubergphilis.com>; Rajani Karuturi <ra...@apache.org>; Rohit Yadav <ro...@shapeblue.com>; Wido den Hollander <wi...@widodh.nl>; Daan Hoogland <da...@gmail.com>
Subject: Re: [Blocker/Critical] VR related Issues
Hi guys,
CLOUDSTACK-8823 is a duplicate of https://issues.apache.org/jira/browse/CLOUDSTACK-8814, created 2 days ago.
Cheers,
Wilder
On 08 Sep 2015, at 13:35, Wilder Rodrigues <WR...@schubergphilis.com>> wrote:
Hi guys,
Thanks for reporting those issues.
Concerning the following issues…
* Remote Access VPN
https://github.com/apache/cloudstack/pull/772
* Default INPUT/Forward policies
https://github.com/apache/cloudstack/pull/765
* Default route not configured on VPC
https://github.com/apache/cloudstack/pull/784
* site2site VPN
https://github.com/apache/cloudstack/pull/772
… we already got PRs to be reviewed/tested, but we are lacking response from the community on those. All the PRs above already got 1 LGTM. Could you reserve some time to review/test what is categorised as blocker so we can move forward?
I will look into the https://issues.apache.org/jira/browse/CLOUDSTACK-8823 issue and come back to you.
Cheers,
Wilder
On 08 Sep 2015, at 11:41, Koushik Das <ko...@citrix.com>> wrote:
I am also seeing this issue https://issues.apache.org/jira/browse/CLOUDSTACK-8823. This is a blocker for regular isolated network as VR is not coming to 'up' state due to ssh failure.
-----Original Message-----
From: Bharat Kumar [mailto:bharat.kumar@citrix.com]
Sent: Thursday, 3 September 2015 15:44
To: dev@cloudstack.apache.org<ma...@cloudstack.apache.org>
Subject: Re: [Blocker/Critical] VR related Issues
Hi,
found few more issues related to rvr in isolated networks.
There seems to be a problem with the keepalived config and setting up of default routes when rvr changes states.
created bugs for these issues.
CLOUDSTACK-8798<https://issues.apache.org/jira/browse/CLOUDSTACK-8798>
CLOUDSTACK-8799<https://issues.apache.org/jira/browse/CLOUDSTACK-8799>
Thanks,
Bharat.
On 12-Aug-2015, at 10:52 am, Bharat Kumar <bh...@citrix.com>> wrote:
Hi,
looks like there is one more issue. Conntrackd fails to start in case of rvr enabled isolated networks.
created a bug to track this. https://issues.apache.org/jira/browse/CLOUDSTACK-8725
Thanks,
Bharat.
On 11-Aug-2015, at 3:03 pm, Kishan Kavala <Ki...@citrix.com>> wrote:
Below VR related issues currently open. Most of these issues did not exist in 4.5.x and are related to VR refactor (persistent VR).
Blocker
https://issues.apache.org/jira/browse/CLOUDSTACK-8690 - Remote Access VPN not working
Critical
https://issues.apache.org/jira/browse/CLOUDSTACK-8688 - Default policy for INPUT and FORWARD chain is ACCEPT in VR filter table (Wilder is working on this)
https://issues.apache.org/jira/browse/CLOUDSTACK-8681 - CS does not honor the default deny egress policy in isolated network
https://issues.apache.org/jira/browse/CLOUDSTACK-8710 - site2site vpn iptables rules are not configured on VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8685 - Default route is not configured on VPC VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8694 - Monitor service cron job not visible
Re: [Blocker/Critical] VR related Issues
Posted by Wilder Rodrigues <WR...@schubergphilis.com>.
Hi guys,
CLOUDSTACK-8823 is a duplicate of https://issues.apache.org/jira/browse/CLOUDSTACK-8814, created 2 days ago.
Cheers,
Wilder
On 08 Sep 2015, at 13:35, Wilder Rodrigues <WR...@schubergphilis.com>> wrote:
Hi guys,
Thanks for reporting those issues.
Concerning the following issues…
* Remote Access VPN
https://github.com/apache/cloudstack/pull/772
* Default INPUT/Forward policies
https://github.com/apache/cloudstack/pull/765
* Default route not configured on VPC
https://github.com/apache/cloudstack/pull/784
* site2site VPN
https://github.com/apache/cloudstack/pull/772
… we already got PRs to be reviewed/tested, but we are lacking response from the community on those. All the PRs above already got 1 LGTM. Could you reserve some time to review/test what is categorised as blocker so we can move forward?
I will look into the https://issues.apache.org/jira/browse/CLOUDSTACK-8823 issue and come back to you.
Cheers,
Wilder
On 08 Sep 2015, at 11:41, Koushik Das <ko...@citrix.com>> wrote:
I am also seeing this issue https://issues.apache.org/jira/browse/CLOUDSTACK-8823. This is a blocker for regular isolated network as VR is not coming to 'up' state due to ssh failure.
-----Original Message-----
From: Bharat Kumar [mailto:bharat.kumar@citrix.com]
Sent: Thursday, 3 September 2015 15:44
To: dev@cloudstack.apache.org<ma...@cloudstack.apache.org>
Subject: Re: [Blocker/Critical] VR related Issues
Hi,
found few more issues related to rvr in isolated networks.
There seems to be a problem with the keepalived config and setting up of default routes when rvr changes states.
created bugs for these issues.
CLOUDSTACK-8798<https://issues.apache.org/jira/browse/CLOUDSTACK-8798>
CLOUDSTACK-8799<https://issues.apache.org/jira/browse/CLOUDSTACK-8799>
Thanks,
Bharat.
On 12-Aug-2015, at 10:52 am, Bharat Kumar <bh...@citrix.com>> wrote:
Hi,
looks like there is one more issue. Conntrackd fails to start in case of rvr enabled isolated networks.
created a bug to track this. https://issues.apache.org/jira/browse/CLOUDSTACK-8725
Thanks,
Bharat.
On 11-Aug-2015, at 3:03 pm, Kishan Kavala <Ki...@citrix.com>> wrote:
Below VR related issues currently open. Most of these issues did not exist in 4.5.x and are related to VR refactor (persistent VR).
Blocker
https://issues.apache.org/jira/browse/CLOUDSTACK-8690 - Remote Access VPN not working
Critical
https://issues.apache.org/jira/browse/CLOUDSTACK-8688 - Default policy for INPUT and FORWARD chain is ACCEPT in VR filter table (Wilder is working on this)
https://issues.apache.org/jira/browse/CLOUDSTACK-8681 - CS does not honor the default deny egress policy in isolated network
https://issues.apache.org/jira/browse/CLOUDSTACK-8710 - site2site vpn iptables rules are not configured on VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8685 - Default route is not configured on VPC VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8694 - Monitor service cron job not visible
Re: [Blocker/Critical] VR related Issues
Posted by Wilder Rodrigues <WR...@schubergphilis.com>.
Hi guys,
Thanks for reporting those issues.
Concerning the following issues…
* Remote Access VPN
https://github.com/apache/cloudstack/pull/772
* Default INPUT/Forward policies
https://github.com/apache/cloudstack/pull/765
* Default route not configured on VPC
https://github.com/apache/cloudstack/pull/784
* site2site VPN
https://github.com/apache/cloudstack/pull/772
… we already got PRs to be reviewed/tested, but we are lacking response from the community on those. All the PRs above already got 1 LGTM. Could you reserve some time to review/test what is categorised as blocker so we can move forward?
I will look into the https://issues.apache.org/jira/browse/CLOUDSTACK-8823 issue and come back to you.
Cheers,
Wilder
On 08 Sep 2015, at 11:41, Koushik Das <ko...@citrix.com>> wrote:
I am also seeing this issue https://issues.apache.org/jira/browse/CLOUDSTACK-8823. This is a blocker for regular isolated network as VR is not coming to 'up' state due to ssh failure.
-----Original Message-----
From: Bharat Kumar [mailto:bharat.kumar@citrix.com]
Sent: Thursday, 3 September 2015 15:44
To: dev@cloudstack.apache.org<ma...@cloudstack.apache.org>
Subject: Re: [Blocker/Critical] VR related Issues
Hi,
found few more issues related to rvr in isolated networks.
There seems to be a problem with the keepalived config and setting up of default routes when rvr changes states.
created bugs for these issues.
CLOUDSTACK-8798<https://issues.apache.org/jira/browse/CLOUDSTACK-8798>
CLOUDSTACK-8799<https://issues.apache.org/jira/browse/CLOUDSTACK-8799>
Thanks,
Bharat.
On 12-Aug-2015, at 10:52 am, Bharat Kumar <bh...@citrix.com>> wrote:
Hi,
looks like there is one more issue. Conntrackd fails to start in case of rvr enabled isolated networks.
created a bug to track this. https://issues.apache.org/jira/browse/CLOUDSTACK-8725
Thanks,
Bharat.
On 11-Aug-2015, at 3:03 pm, Kishan Kavala <Ki...@citrix.com>> wrote:
Below VR related issues currently open. Most of these issues did not exist in 4.5.x and are related to VR refactor (persistent VR).
Blocker
https://issues.apache.org/jira/browse/CLOUDSTACK-8690 - Remote Access VPN not working
Critical
https://issues.apache.org/jira/browse/CLOUDSTACK-8688 - Default policy for INPUT and FORWARD chain is ACCEPT in VR filter table (Wilder is working on this)
https://issues.apache.org/jira/browse/CLOUDSTACK-8681 - CS does not honor the default deny egress policy in isolated network
https://issues.apache.org/jira/browse/CLOUDSTACK-8710 - site2site vpn iptables rules are not configured on VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8685 - Default route is not configured on VPC VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8694 - Monitor service cron job not visible
RE: [Blocker/Critical] VR related Issues
Posted by Koushik Das <ko...@citrix.com>.
I am also seeing this issue https://issues.apache.org/jira/browse/CLOUDSTACK-8823. This is a blocker for regular isolated network as VR is not coming to 'up' state due to ssh failure.
-----Original Message-----
From: Bharat Kumar [mailto:bharat.kumar@citrix.com]
Sent: Thursday, 3 September 2015 15:44
To: dev@cloudstack.apache.org
Subject: Re: [Blocker/Critical] VR related Issues
Hi,
found few more issues related to rvr in isolated networks.
There seems to be a problem with the keepalived config and setting up of default routes when rvr changes states.
created bugs for these issues.
CLOUDSTACK-8798<https://issues.apache.org/jira/browse/CLOUDSTACK-8798>
CLOUDSTACK-8799<https://issues.apache.org/jira/browse/CLOUDSTACK-8799>
Thanks,
Bharat.
On 12-Aug-2015, at 10:52 am, Bharat Kumar <bh...@citrix.com>> wrote:
Hi,
looks like there is one more issue. Conntrackd fails to start in case of rvr enabled isolated networks.
created a bug to track this. https://issues.apache.org/jira/browse/CLOUDSTACK-8725
Thanks,
Bharat.
On 11-Aug-2015, at 3:03 pm, Kishan Kavala <Ki...@citrix.com>> wrote:
Below VR related issues currently open. Most of these issues did not exist in 4.5.x and are related to VR refactor (persistent VR).
Blocker
https://issues.apache.org/jira/browse/CLOUDSTACK-8690 - Remote Access VPN not working
Critical
https://issues.apache.org/jira/browse/CLOUDSTACK-8688 - Default policy for INPUT and FORWARD chain is ACCEPT in VR filter table (Wilder is working on this)
https://issues.apache.org/jira/browse/CLOUDSTACK-8681 - CS does not honor the default deny egress policy in isolated network
https://issues.apache.org/jira/browse/CLOUDSTACK-8710 - site2site vpn iptables rules are not configured on VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8685 - Default route is not configured on VPC VR
https://issues.apache.org/jira/browse/CLOUDSTACK-8694 - Monitor service cron job not visible