cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Wilder Rodrigues (JIRA)" <j...@apache.org>
Subject [jira] [Created] (CLOUDSTACK-9018) Egress rule with 0.0.0.0/0 - all (protocol) doesn't get removed from the VR
Date Tue, 03 Nov 2015 06:25:27 GMT
Wilder Rodrigues created CLOUDSTACK-9018:
--------------------------------------------

             Summary: Egress rule with 0.0.0.0/0 - all (protocol) doesn't get removed from
the VR
                 Key: CLOUDSTACK-9018
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9018
             Project: CloudStack
          Issue Type: Bug
      Security Level: Public (Anyone can view this level - this is the default.)
          Components: Virtual Router
    Affects Versions: 4.6.0
            Reporter: Wilder Rodrigues
            Assignee: Wilder Rodrigues


Steps:

1. Deploy a virtual machine on an isolated network with default egress DENY
2. Add egress rules: 0.0.0.0/0 - protocol ALL
3. Check the router

Chain FW_EGRESS_RULES (1 references)
target     prot opt source               destination                 
ACCEPT     all  --  anywhere             anywhere            
DROP       all  --  anywhere             anywhere   

4. Delete the egress rules and check the router again
5. The result is the same: the rule is still there.
6. Try adding the same rule again: 0.0.0.0/0 - protocol ALL
7. Check the router:

Chain FW_EGRESS_RULES (1 references)
target     prot opt source               destination               
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
DROP       all  --  anywhere             anywhere   

But if I add something like:

0.0.0.0/0    -   tcp    -   80   -   80

It works fine! I can remove and add again and the routers remains configured properly.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message