You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Nux (JIRA)" <ji...@apache.org> on 2014/02/12 13:40:19 UTC

[jira] [Created] (CLOUDSTACK-6083) Missing cidrlist in 4.3 adv zone firewall

Nux created CLOUDSTACK-6083:
-------------------------------

             Summary: Missing cidrlist in 4.3 adv zone firewall
                 Key: CLOUDSTACK-6083
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-6083
             Project: CloudStack
          Issue Type: Bug
      Security Level: Public (Anyone can view this level - this is the default.)
    Affects Versions: 4.3.0
         Environment: CentOS 6.5 HVs and mgmt, adv zone (without sg)
            Reporter: Nux
            Priority: Critical


It's the first time I'm testing firewall in 4.3 Advanced zone (without SG)  so please let me know if I'm missing something obvious; I notice the cidrlist is missing from the rules, both in UI and in cloudmonkey.
If I create the rule from cloudmoneky it also doesn't register a cidrlist, so it doesn't seem to be UI's fault.
This is what I see in the logs http://fpaste.org/75819/39203643/ when I create a rule. Anyone else experiencing this?

Do note:
This is a (until now successfull) upgrade from 4.2.1.
The cidrs make it into the firewall_rules_cidrs table.
I also checked inside the VR and while iptables does have rules for the ports I mentioned, the CIDRs are missing, too.


See http://img.nux.ro/3Kk-Selection_050.png


mycloudmonkey > list firewallrules id=835dfc08-beab-458a-9c30-6b0b2b11f201
count = 1
firewallrule:
id = 835dfc08-beab-458a-9c30-6b0b2b11f201
cidrlist =
endport = 65535
ipaddress = 172.16.72.212
ipaddressid = f481629a-deb6-4413-b253-e8e98d8a303a
networkid = c615df7c-3ea3-4138-a83c-d848e20fe1f6
protocol = tcp
startport = 1
state = Active
tags:




--
This message was sent by Atlassian JIRA
(v6.1.5#6160)