cloudstack-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Amin Pashapour <jol...@yahoo.com>
Subject Re: F5 and CloudStack
Date Fri, 14 Mar 2014 16:24:45 GMT
Quick update on this issue:

- Added two additional IP's to my network. Now I have 10.50.10.102 (SourceNAT), .104 and .106
(three public ip's)
- Added firewall and portmapping rules to .104 for ports 22 and 8080
- Added LB rule to .106 (public 80 to private 8080)

Now I can ssh into .104 which goes into 10.0.10.239 (my vm's guest ip). And started tcpdump
port 8080
When I telnet into .106 on port 80, I can see tcpdump activity on port 8080 on the vm.

I will install a real http server on this vm and see if it works as advertised :)

Last question for me is what does .102 do in this mix?

Thanks.
Amin



________________________________
 From: Amin Pashapour <jolfa1@yahoo.com>
To: "users@cloudstack.apache.org" <users@cloudstack.apache.org> 
Sent: Thursday, March 13, 2014 6:53 PM
Subject: Re: F5 and CloudStack
 


Hi Chandan

Below is what my network offering shows:
Supported Services:UserData, Firewall, Vpn, Dhcp, StaticNat, Lb, Dns, PortForwarding, SourceNat

Service Capabilities: UserData: VirtualRouter, Firewall: VirtualRouter, Vpn: VirtualRouter,
Dhcp: VirtualRouter, StaticNat: VirtualRouter, Lb: F5BigIp, Dns: VirtualRouter, PortForwarding:
VirtualRouter, SourceNat: VirtualRouter

Thanks
Amin


________________________________
 From: Chandan Purushothama <Chandan.Purushothama@citrix.com>
To: "users@cloudstack.apache.org" <users@cloudstack.apache.org> 
Sent: Thursday, March 13, 2014 5:46 PM
Subject: RE: F5 and CloudStack
 

Hello Amin,

May I know whether you added Port Forwarding Service to your Network Offering,

Thank you,
Chandan.

-----Original Message-----
From: Amin Pashapour [mailto:jolfa1@yahoo.com] 
Sent: Wednesday, March 12, 2014 2:21 PM
To: users@cloudstack.apache.org
Subject: Re: F5 and CloudStack

Chandan Purushothama <Chandan.Purushothama@...> writes:

> 
> Hello Amin,
> 
> May I know if you are able to work with a VM deployed in a network 
> created
using
> "DefaultIsolatedNetworkOfferingWithSourceNatService". This will prove 
> that
your Guest VLAN range
> and Public VLAN are valid,
> 
> Thank you,
> Chandan.
> 
> -----Original Message-----
> From: Amin Pashapour [mailto:jolfa1@...]
> Sent:
 Wednesday, March 12, 2014 1:09 PM
> To: users@...
> Subject: F5 and CloudStack
> 
> Hi All
> 
> I am trying to add an F5 BigIP (10.1) into my CloudStack (4.2.1)
environment.
> 
> This is what I have done:
> 1- Created a network offering with VR to do everything, including 
> Source
and Static NAT, except BL using F5BigIP.
> 2- Created a network based on the offering. Added egress rule for
0.0.0.0/0 for all protocols.
> 3- Created a VM using Centos template and the network from step 2
> 4- Added a firewall rule to the "public" ip of the network for tcp 
> ports
1- 64000.
> 5- Can't add port forwarding to the public ip.
> 
> I get into the VM's console and the network is up. However, I can't
ping/ssh to any other system.
> 
> No system can ping/ssh my VM.  This is
 similar to what someone named 
> Anoop
had observed in April of 2013.
> 
> Can someone give me a hint or two on what I am missing?
> 
> Thanks.
> 
> 

Hi Chandan.

Other VM's using DefaultIsolatedNetworkOfferingWithSourceNatService work perfectly fine. I
can ssh with no problems.  Of course, I had to add a port forwarding rule to let port 22
through.

When I try to add a port forwarding rule with the F5 offering network, I get this error:

The IP <public ip> is already used as SourceNAT rather than PortForwarding.

And I can't go any further.

Thanks
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message