Return-Path: 
 <issues-return-58123-apmail-cloudstack-issues-archive=cloudstack.apache.org@cloudstack.apache.org>
X-Original-To: apmail-cloudstack-issues-archive@www.apache.org
Delivered-To: apmail-cloudstack-issues-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id DD2401873A
	for <apmail-cloudstack-issues-archive@www.apache.org>;
 Fri, 17 Jul 2015 15:22:09 +0000 (UTC)
Received: (qmail 15073 invoked by uid 500); 17 Jul 2015 15:22:04 -0000
Delivered-To: apmail-cloudstack-issues-archive@cloudstack.apache.org
Received: (qmail 15035 invoked by uid 500); 17 Jul 2015 15:22:04 -0000
Mailing-List: contact issues-help@cloudstack.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@cloudstack.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@cloudstack.apache.org>
List-Post: <mailto:issues@cloudstack.apache.org>
List-Id: <issues.cloudstack.apache.org>
Reply-To: dev@cloudstack.apache.org
Delivered-To: mailing list issues@cloudstack.apache.org
Received: (qmail 15026 invoked by uid 500); 17 Jul 2015 15:22:04 -0000
Delivered-To: apmail-incubator-cloudstack-issues@incubator.apache.org
Received: (qmail 15022 invoked by uid 99); 17 Jul 2015 15:22:04 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 17 Jul 2015 15:22:04 +0000
Date: Fri, 17 Jul 2015 15:22:04 +0000 (UTC)
From: "Frank Louwers (JIRA)" <jira@apache.org>
To: cloudstack-issues@incubator.apache.org
Message-ID: <JIRA.12845908.1437146426000.216991.1437146524648@Atlassian.JIRA>
In-Reply-To: <JIRA.12845908.1437146426000@Atlassian.JIRA>
References: <JIRA.12845908.1437146426000@Atlassian.JIRA>
 <JIRA.12845908.1437146426011@arcas>
Subject: [jira] [Updated] (CLOUDSTACK-8650) When using security groups,
 adding an ingress rule for protocol "all" for source cidr 0.0.0.0/0 is
 impossible
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/CLOUDSTACK-8650?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Frank Louwers updated CLOUDSTACK-8650:
--------------------------------------
    Summary: When using security groups, adding an ingress rule for protocol "all" for source cidr 0.0.0.0/0 is impossible  (was: When using security groups, adding in ingress rule for protocol "all" for source cidr 0.0.0.0/0 is impossible)

> When using security groups, adding an ingress rule for protocol "all" for source cidr 0.0.0.0/0 is impossible
> -------------------------------------------------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-8650
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-8650
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>            Reporter: Frank Louwers
>            Priority: Minor
>
> While it is possible to add ingress rules for tcp, udp and icmp for source range 0.0.0.0/0, it is currently impossible to add a rule for protocol all for source range 0.0.0.0/0.
> So these work (using eg cloudmonkey):
>   * authorize securitygroupingress securitygroupid=$id cidrlist="0.0.0.0/0" protocol=tcp
>   * authorize securitygroupingress securitygroupid=$id cidrlist="0.0.0.0/0" protocol=icmp
>   * authorize securitygroupingress securitygroupid=$id cidrlist="0.0.0.0/1" protocol=all
>   * authorize securitygroupingress securitygroupid=$id cidrlist="128.0.0.0/1" protocol=all
> But this doesn't work:
>   * authorize securitygroupingress securitygroupid=$id cidrlist="0.0.0.0/0" protocol=all
> Fix is in https://github.com/apache/cloudstack/pull/601



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)