You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "angeline shen (JIRA)" <ji...@apache.org> on 2013/04/27 04:18:18 UTC

[jira] [Created] (CLOUDSTACK-2219) SRX - Unable to ssh VM even when TCP port 22 rule set, able to ping VM even when no ICMP rule set

angeline shen created CLOUDSTACK-2219:
-----------------------------------------

             Summary: SRX - Unable to ssh VM even when TCP port 22 rule set, able to ping VM even when no ICMP rule set
                 Key: CLOUDSTACK-2219
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-2219
             Project: CloudStack
          Issue Type: Bug
      Security Level: Public (Anyone can view this level - this is the default.)
          Components: Management Server
    Affects Versions: 4.2.0
         Environment: MS  ACS 4.2  build    4/24/13 7:48 PM     revision:  299cccf779f75c3ba04d9ec7303bed88394c3562 
host   XS  6.0.2  
            Reporter: angeline shen
            Assignee: Jayapal Reddy
            Priority: Critical
             Fix For: 4.2.0


MS  ACS 4.2  build    4/24/13 7:48 PM     revision:  299cccf779f75c3ba04d9ec7303bed88394c3562 
host   XS  6.0.2  

1. SRX network offering :  isolated  DHCP: virtual router   DNS: virtual router   firewall: SRX   userdata:virtual router   sourceNAT: SRX    staticNAT: SRX   portforward: SRX   sourceNAT type: perzone

2. domain:  ROOT    admin
   domain:   /d1         domain admin:  d1domain  
   domain:   /d2         user:     d2user

3.  login:  admin    create VMs,  allocate public IPs . 
    for each IP,  set firewall rule    CIDR  0.0.0.0/0    TCP    startport: 1  endport: 8090
    set portforward rule   private port range: 22 - 22  public port range: 22 - 22   TCP   assign to VM  
    from external (laptop)   test ping VMs   and ssh to VMs   

    login:  d1domain    repeat above steps
    login:  d2user        repeat above steps

      login             VM              public IP             ping         comment   ssh         comment
    -----------------------------------------------------------------------------------------------------------------------------   
      admin          i-2-17        10.223.123.17        succeed    bug           succeed    
      admin          i-2-22        10.223.123.20        succeed    bug           succeed    
      d1domain     i-3-18        10.223.123.18        succeed    bug           fail           bug
      d1domain     i-3-19        10.223.123.19        succeed    bug           fail           bug
      d2user         i-4-20        10.223.123.12        succeed    bug           fail           bug
      d2user         i-4-21        10.223.123.14        succeed    bug           fail           bug

    




--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira