Return-Path: X-Original-To: apmail-cloudstack-issues-archive@www.apache.org Delivered-To: apmail-cloudstack-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 69A001885C for ; Sat, 24 Oct 2015 08:56:28 +0000 (UTC) Received: (qmail 56376 invoked by uid 500); 24 Oct 2015 08:56:28 -0000 Delivered-To: apmail-cloudstack-issues-archive@cloudstack.apache.org Received: (qmail 56345 invoked by uid 500); 24 Oct 2015 08:56:28 -0000 Mailing-List: contact issues-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cloudstack.apache.org Delivered-To: mailing list issues@cloudstack.apache.org Received: (qmail 56336 invoked by uid 500); 24 Oct 2015 08:56:28 -0000 Delivered-To: apmail-incubator-cloudstack-issues@incubator.apache.org Received: (qmail 56333 invoked by uid 99); 24 Oct 2015 08:56:28 -0000 Received: from arcas.apache.org (HELO arcas) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 24 Oct 2015 08:56:28 +0000 Received: from arcas.apache.org (localhost [127.0.0.1]) by arcas (Postfix) with ESMTP id CA5AD2C1F5E for ; Sat, 24 Oct 2015 08:56:27 +0000 (UTC) Date: Sat, 24 Oct 2015 08:56:27 +0000 (UTC) From: "ASF GitHub Bot (JIRA)" To: cloudstack-issues@incubator.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (CLOUDSTACK-8793) Project Site-2-Site VPN Connection Fails to Register Correctly MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CLOUDSTACK-8793?page=3Dcom.atla= ssian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId= =3D14972496#comment-14972496 ]=20 ASF GitHub Bot commented on CLOUDSTACK-8793: -------------------------------------------- Github user remibergsma commented on the pull request: https://github.com/apache/cloudstack/pull/879#issuecomment-150777561 =20 @pdube LGTM, based on a set of tests that I run on this branch: =20 ``` nosetests --with-marvin --marvin-config=3D${marvinCfg} -s -a tags=3Dadv= anced,required_hardware=3Dtrue \ component/test_vpc_redundant.py \ component/test_routers_iptables_default_policy.py \ component/test_routers_network_ops.py \ component/test_vpc_router_nics.py \ smoke/test_loadbalance.py \ smoke/test_internal_lb.py \ smoke/test_ssvm.py ``` =20 Result: =20 ``` Create a redundant VPC with two networks with two VMs in each network .= .. =3D=3D=3D TestName: test_01_create_redundant_VPC_2tiers_4VMs_4IPs_4PF_AC= L | Status : SUCCESS =3D=3D=3D ok Create a redundant VPC with two networks with two VMs in each network a= nd check default routes ... =3D=3D=3D TestName: test_02_redundant_VPC_defau= lt_routes | Status : SUCCESS =3D=3D=3D ok Test iptables default INPUT/FORWARD policy on RouterVM ... =3D=3D=3D Te= stName: test_02_routervm_iptables_policies | Status : SUCCESS =3D=3D=3D ok Test iptables default INPUT/FORWARD policies on VPC router ... =3D=3D= =3D TestName: test_01_single_VPC_iptables_policies | Status : SUCCESS =3D= =3D=3D ok Stop existing router, add a PF rule and check we can access the VM ... = =3D=3D=3D TestName: test_isolate_network_FW_PF_default_routes | Status : SU= CCESS =3D=3D=3D ok Test redundant router internals ... =3D=3D=3D TestName: test_RVR_Networ= k_FW_PF_SSH_default_routes | Status : SUCCESS =3D=3D=3D ok Create a VPC with two networks with one VM in each network and test nic= s after destroy ... =3D=3D=3D TestName: test_01_VPC_nics_after_destroy | St= atus : SUCCESS =3D=3D=3D ok Create a VPC with two networks with one VM in each network and test def= ault routes ... =3D=3D=3D TestName: test_02_VPC_default_routes | Status : S= UCCESS =3D=3D=3D ok Test to create Load balancing rule with source NAT ... =3D=3D=3D TestNa= me: test_01_create_lb_rule_src_nat | Status : SUCCESS =3D=3D=3D ok Test to create Load balancing rule with non source NAT ... =3D=3D=3D Te= stName: test_02_create_lb_rule_non_nat | Status : SUCCESS =3D=3D=3D ok Test for assign & removing load balancing rule ... =3D=3D=3D TestName: = test_assign_and_removal_lb | Status : SUCCESS =3D=3D=3D ok Test to verify access to loadbalancer haproxy admin stats page ... =3D= =3D=3D TestName: test02_internallb_haproxy_stats_on_all_interfaces | Status= : SUCCESS =3D=3D=3D ok Test create, assign, remove of an Internal LB with roundrobin http traf= fic to 3 vm's ... =3D=3D=3D TestName: test_01_internallb_roundrobin_1VPC_3V= M_HTTP_port80 | Status : SUCCESS =3D=3D=3D ok Test SSVM Internals ... =3D=3D=3D TestName: test_03_ssvm_internals | St= atus : SUCCESS =3D=3D=3D ok Test CPVM Internals ... =3D=3D=3D TestName: test_04_cpvm_internals | St= atus : SUCCESS =3D=3D=3D ok Test stop SSVM ... =3D=3D=3D TestName: test_05_stop_ssvm | Status : SUC= CESS =3D=3D=3D ok Test stop CPVM ... =3D=3D=3D TestName: test_06_stop_cpvm | Status : SUC= CESS =3D=3D=3D ok Test reboot SSVM ... =3D=3D=3D TestName: test_07_reboot_ssvm | Status := SUCCESS =3D=3D=3D ok Test reboot CPVM ... =3D=3D=3D TestName: test_08_reboot_cpvm | Status := SUCCESS =3D=3D=3D ok Test destroy SSVM ... =3D=3D=3D TestName: test_09_destroy_ssvm | Status= : SUCCESS =3D=3D=3D ok Test destroy CPVM ... =3D=3D=3D TestName: test_10_destroy_cpvm | Status= : SUCCESS =3D=3D=3D ok =20 ---------------------------------------------------------------------- Ran 21 tests in 10163.375s =20 OK ``` =20 And: =20 ``` nosetests --with-marvin --marvin-config=3D${marvinCfg} -s -a tags=3Dadv= anced,required_hardware=3Dfalse \ smoke/test_routers.py \ smoke/test_network_acl.py \ smoke/test_privategw_acl.py \ smoke/test_reset_vm_on_reboot.py \ smoke/test_vm_life_cycle.py \ smoke/test_vpc_vpn.py \ smoke/test_service_offerings.py \ component/test_vpc_offerings.py \ component/test_vpc_routers.py ``` =20 Result: ``` Test router internal advanced zone ... =3D=3D=3D TestName: test_02_rout= er_internal_adv | Status : SUCCESS =3D=3D=3D ok Test restart network ... =3D=3D=3D TestName: test_03_restart_network_cl= eanup | Status : SUCCESS =3D=3D=3D ok Test router basic setup ... =3D=3D=3D TestName: test_05_router_basic | = Status : SUCCESS =3D=3D=3D ok Test router advanced setup ... =3D=3D=3D TestName: test_06_router_advan= ced | Status : SUCCESS =3D=3D=3D ok Test stop router ... =3D=3D=3D TestName: test_07_stop_router | Status := SUCCESS =3D=3D=3D ok Test start router ... =3D=3D=3D TestName: test_08_start_router | Status= : SUCCESS =3D=3D=3D ok Test reboot router ... =3D=3D=3D TestName: test_09_reboot_router | Stat= us : SUCCESS =3D=3D=3D ok test_privategw_acl (integration.smoke.test_privategw_acl.TestPrivateGwA= CL) ... =3D=3D=3D TestName: test_privategw_acl | Status : SUCCESS =3D=3D=3D ok Test reset virtual machine on reboot ... =3D=3D=3D TestName: test_01_re= set_vm_on_reboot | Status : SUCCESS =3D=3D=3D ok Test advanced zone virtual router ... =3D=3D=3D TestName: test_advZoneV= irtualRouter | Status : SUCCESS =3D=3D=3D ok Test Deploy Virtual Machine ... =3D=3D=3D TestName: test_deploy_vm | St= atus : SUCCESS =3D=3D=3D ok Test Multiple Deploy Virtual Machine ... =3D=3D=3D TestName: test_deplo= y_vm_multiple | Status : SUCCESS =3D=3D=3D ok Test Stop Virtual Machine ... =3D=3D=3D TestName: test_01_stop_vm | Sta= tus : SUCCESS =3D=3D=3D ok Test Start Virtual Machine ... =3D=3D=3D TestName: test_02_start_vm | S= tatus : SUCCESS =3D=3D=3D ok Test Reboot Virtual Machine ... =3D=3D=3D TestName: test_03_reboot_vm |= Status : SUCCESS =3D=3D=3D ok Test destroy Virtual Machine ... =3D=3D=3D TestName: test_06_destroy_vm= | Status : SUCCESS =3D=3D=3D ok Test recover Virtual Machine ... =3D=3D=3D TestName: test_07_restore_vm= | Status : SUCCESS =3D=3D=3D ok Test migrate VM ... SKIP: At least two hosts should be present in the z= one for migration Test destroy(expunge) Virtual Machine ... =3D=3D=3D TestName: test_09_e= xpunge_vm | Status : SUCCESS =3D=3D=3D ok Test Remote Access VPN in VPC ... =3D=3D=3D TestName: test_vpc_remote_a= ccess_vpn | Status : SUCCESS =3D=3D=3D ok Test VPN in VPC ... =3D=3D=3D TestName: test_vpc_site2site_vpn | Status= : SUCCESS =3D=3D=3D ok Test to create service offering ... =3D=3D=3D TestName: test_01_create_= service_offering | Status : SUCCESS =3D=3D=3D ok Test to update existing service offering ... =3D=3D=3D TestName: test_0= 2_edit_service_offering | Status : SUCCESS =3D=3D=3D ok Test to delete service offering ... =3D=3D=3D TestName: test_03_delete_= service_offering | Status : SUCCESS =3D=3D=3D ok Test create VPC offering ... =3D=3D=3D TestName: test_01_create_vpc_off= ering | Status : SUCCESS =3D=3D=3D ok Test VPC offering without load balancing service ... =3D=3D=3D TestName= : test_03_vpc_off_without_lb | Status : EXCEPTION =3D=3D=3D ERROR Test VPC offering without static NAT service ... =3D=3D=3D TestName: te= st_04_vpc_off_without_static_nat | Status : EXCEPTION =3D=3D=3D ERROR Test VPC offering without port forwarding service ... =3D=3D=3D TestNam= e: test_05_vpc_off_without_pf | Status : EXCEPTION =3D=3D=3D ERROR Test VPC offering with invalid services ... =3D=3D=3D TestName: test_06= _vpc_off_invalid_services | Status : SUCCESS =3D=3D=3D ok Test update VPC offering ... =3D=3D=3D TestName: test_07_update_vpc_off= | Status : SUCCESS =3D=3D=3D ok Test list VPC offering ... =3D=3D=3D TestName: test_08_list_vpc_off | S= tatus : SUCCESS =3D=3D=3D ok test_09_create_redundant_vpc_offering (integration.component.test_vpc_o= fferings.TestVPCOffering) ... =3D=3D=3D TestName: test_09_create_redundant_= vpc_offering | Status : SUCCESS =3D=3D=3D ok Test start/stop of router after addition of one guest network ... =3D= =3D=3D TestName: test_01_start_stop_router_after_addition_of_one_guest_netw= ork | Status : SUCCESS =3D=3D=3D ok Test reboot of router after addition of one guest network ... =3D=3D=3D= TestName: test_02_reboot_router_after_addition_of_one_guest_network | Stat= us : SUCCESS =3D=3D=3D ok Test to change service offering of router after addition of one guest n= etwork ... =3D=3D=3D TestName: test_04_chg_srv_off_router_after_addition_of= _one_guest_network | Status : SUCCESS =3D=3D=3D ok Test destroy of router after addition of one guest network ... =3D=3D= =3D TestName: test_05_destroy_router_after_addition_of_one_guest_network | = Status : SUCCESS =3D=3D=3D ok Test to stop and start router after creation of VPC ... =3D=3D=3D TestN= ame: test_01_stop_start_router_after_creating_vpc | Status : SUCCESS =3D=3D= =3D ok Test to reboot the router after creating a VPC ... =3D=3D=3D TestName: = test_02_reboot_router_after_creating_vpc | Status : SUCCESS =3D=3D=3D ok Tests to change service offering of the Router after ... =3D=3D=3D Test= Name: test_04_change_service_offerring_vpc | Status : SUCCESS =3D=3D=3D ok Test to destroy the router after creating a VPC ... =3D=3D=3D TestName:= test_05_destroy_router_after_creating_vpc | Status : SUCCESS =3D=3D=3D ok ---------------------------------------------------------------------- Ran 40 tests in 7667.102s =20 FAILED (SKIP=3D1, errors=3D3) ``` =20 The 3 errors are due to cleanup problems that are were broken on master= when this was branched off. It was fixed in PR #967. =20 Please note: - There is no test covering your change, so I didn't test that. I would= appreciate it if you could somehow show here that it works, for example wi= th some screen shots (or better, write a Marvin test, but that doesn't have= to be done in this PR) - Jenkins failed, please force-push to have it run again. We can only m= erge once Jenkins is green. - While you're at it, if you rebase the 3 errors above will also disapp= ear. =20 Thanks for the fix @pdube ! > Project Site-2-Site VPN Connection Fails to Register Correctly > -------------------------------------------------------------- > > Key: CLOUDSTACK-8793 > URL: https://issues.apache.org/jira/browse/CLOUDSTACK-879= 3 > Project: CloudStack > Issue Type: Bug > Security Level: Public(Anyone can view this level - this is the defa= ult.)=20 > Components: Projects > Affects Versions: 4.5.2 > Environment: Clean install of ACS 4.5.2 on CentOS 6.6 > Reporter: Geoff Higgibottom > Assignee: Patrick D. > Labels: project, vpc, vpn > > When trying to create a new Site-2-Site VPN Connection for a Project usin= g the UI the following error message is presented. > "VPN connection can only be esitablished between same account's VPN gatew= ay and customer gateway!" > Apart from the spelling mistake in the error message, the main issue is t= hat the VPN Connection fails to create as the VPN Customer Gateway is linke= d to the Logged in user account, and not the Project. > The VPN Gateway is correctly linked to the Project, as this was fixed in = CLOUDSTACK-5409. > Manually updating the =E2=80=98domain_id=E2=80=99 and =E2=80=98account_id= =E2=80=99 values in the =E2=80=98s2s_vpn_connection=E2=80=99 table in the D= B will result in the successful creation of the VPN Connection, but this co= nnection will not display in the UI or when querying via the API. > The same error exists when using only the API so it is not a UI issue. > This prevents the use of Site-2Site VPNs for VPCs belonging to Projects. -- This message was sent by Atlassian JIRA (v6.3.4#6332)