Return-Path: X-Original-To: apmail-cloudstack-users-archive@www.apache.org Delivered-To: apmail-cloudstack-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 694D818F92 for ; Wed, 11 Nov 2015 10:29:04 +0000 (UTC) Received: (qmail 33525 invoked by uid 500); 11 Nov 2015 10:29:03 -0000 Delivered-To: apmail-cloudstack-users-archive@cloudstack.apache.org Received: (qmail 33457 invoked by uid 500); 11 Nov 2015 10:29:03 -0000 Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cloudstack.apache.org Delivered-To: mailing list users@cloudstack.apache.org Received: (qmail 33444 invoked by uid 99); 11 Nov 2015 10:29:02 -0000 Received: from Unknown (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 11 Nov 2015 10:29:02 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 5B2411A20E2 for ; Wed, 11 Nov 2015 10:29:02 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.101 X-Spam-Level: X-Spam-Status: No, score=-0.101 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_MSPIKE_H2=-0.001] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=pulasan.my Received: from mx1-us-east.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id WjE4Pjb7w7mP for ; Wed, 11 Nov 2015 10:28:57 +0000 (UTC) Received: from mail-io0-f173.google.com (mail-io0-f173.google.com [209.85.223.173]) by mx1-us-east.apache.org (ASF Mail Server at mx1-us-east.apache.org) with ESMTPS id 4B2B6439DA for ; Wed, 11 Nov 2015 10:28:57 +0000 (UTC) Received: by iofh3 with SMTP id h3so29640788iof.3 for ; Wed, 11 Nov 2015 02:28:56 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pulasan.my; s=google; h=mime-version:date:message-id:subject:from:to:content-type; bh=TQfE3y5nkrOSry78LPRSAy2J0H71I4ij3rl9eRFl+TQ=; b=fIinbR/ce+JXAy2m5KYxg7+W2shJv9te0h+4x7sS9nBMfkm9akLuK5Khpgoc6KAJfz x6QrZ+HjfrBtho/MBjtMw8mLuaLur0fMSH8O31b0JGGCbdkfK+y6FtJXzc8nPXNRjSVx ysZtj3gaQ0OiUGPLvTkxCi7GOGz6SsroedBLQ= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to :content-type; bh=TQfE3y5nkrOSry78LPRSAy2J0H71I4ij3rl9eRFl+TQ=; b=jSuIGdOJWlZ9KbukHCkyCt38WVKSZXKZOtmnBlxOlelId7nuObzg0E4DOOqSL/O/qo 0n+xY4Qt5ewj0EFxpb3esTDOJKnPPyhIy2lfJigKVJZ8ZLpNSWh+I8hiJ4a3WKsRwjMz rWPunll4gPvEUvJU2xt2AvzcVRceylemNI38rvB25+Bdk4FQohxhWtQLxCxDpO+kzj+w l/3FaK/17f8BY9D/t/2xLJB/krmHGpPO9tBZ3eolxpW968IbPZ1k3XgcxuGybwtSbHOn ePBBk3GwMgSLnY2e52mCIuGc3qEvieyJPR7sLJ7JemKbPK9S77ZtUzUcc4dOsc/IRDSU kQeg== X-Gm-Message-State: ALoCoQmednSzrUVGN8WxjOlNHtX+Hvclp5jFdjFvTbU2vKBl15FBXA750R9e1yUYiq3sN4EpeqRR MIME-Version: 1.0 X-Received: by 10.107.25.81 with SMTP id 78mr1096457ioz.127.1447237736806; Wed, 11 Nov 2015 02:28:56 -0800 (PST) Received: by 10.107.19.78 with HTTP; Wed, 11 Nov 2015 02:28:56 -0800 (PST) X-Originating-IP: [175.136.187.45] Date: Wed, 11 Nov 2015 18:28:56 +0800 Message-ID: Subject: Console VM works when host iptables off From: Syahrul Sazli Shaharir To: users@cloudstack.apache.org Content-Type: text/plain; charset=UTF-8 Hi, I'm running CS 4.5.2 on CentOS 6.7 , and just set up advanced networking, as follows:- Public - Guest (Trunk port) eth0:304/cloudbr0 (VLAN304): 192.168.30.32/27 eth0.280 (VLAN280): assigned to guests ( 192.168.28.0/24 ) Storage (Access port) cloudbr1 (VLAN281): 10.1.28.0/24 Management (Access port) cloudbr2 (VLAN282): 10.2.28.0/24 All goes well, except for the System VM public IP ( 192.168.30.32/27 ). No one outside of the host running the VMs able to connect or ping to it. This includes each instance's console function, which requires direct connection from the browser to the console VM public IP ( in this case auto-assigned to 192.168.30.41/27 ). However, if I turn off iptables on the host running the console VM, I am able to ping / connect to it and get console function working in the UI. Any clues to what I should check/tweak? Thanks. -- --sazli