Return-Path: X-Original-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Delivered-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id BB986DB2F for ; Fri, 17 Aug 2012 09:26:49 +0000 (UTC) Received: (qmail 74689 invoked by uid 500); 17 Aug 2012 09:26:49 -0000 Delivered-To: apmail-incubator-cloudstack-dev-archive@incubator.apache.org Received: (qmail 74386 invoked by uid 500); 17 Aug 2012 09:26:46 -0000 Mailing-List: contact cloudstack-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cloudstack-dev@incubator.apache.org Delivered-To: mailing list cloudstack-dev@incubator.apache.org Received: (qmail 74010 invoked by uid 99); 17 Aug 2012 09:26:44 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 17 Aug 2012 09:26:44 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of m.kumar@leaseweb.com designates 85.17.130.6 as permitted sender) Received: from [85.17.130.6] (HELO mailhq.ocom.com) (85.17.130.6) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 17 Aug 2012 09:26:39 +0000 Received: from soco-ex02.ocom.lan ([fe80::e8eb:5b13:8509:77a2]) by soco-ex01.ocom.lan ([fe80::e88b:8cd6:691c:bec2%11]) with mapi; Fri, 17 Aug 2012 11:26:16 +0200 From: Mukesh Kumar To: "cloudstack-dev@incubator.apache.org" Date: Fri, 17 Aug 2012 11:26:15 +0200 Subject: RE: port-range support in createPortForwardingRule API method Thread-Topic: port-range support in createPortForwardingRule API method Thread-Index: Ac17zH7zhl64KVW2SqaucPVxSUV78QAihp8g Message-ID: <2E7DE59E63E62E428DCDF9A173D43BF12F7FE14911@soco-ex02.ocom.lan> References: <2E7DE59E63E62E428DCDF9A173D43BF12F7FE148DD@soco-ex02.ocom.lan> In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Virus-Checked: Checked by ClamAV on apache.org Dear Alena Thanks for your comment. Please find my inline reply. Also, take a look a= t the email I've sent at cloudstack-dev@incubator.apache.org addressing Jas= on Bausewein -----Original Message----- From: Alena Prokharchyk [mailto:Alena.Prokharchyk@citrix.com]=20 Sent: donderdag, 16 augustus, 2012 18:31 To: cloudstack-dev@incubator.apache.org Subject: Re: port-range support in createPortForwardingRule API method On 8/16/12 5:49 AM, "Mukesh Kumar" wrote: >>Dear All, >>We are trying to setup Cloudstack 3.0.2 with advance network. >> >>One of our business case, is to forward all the traffic (TCP/UDP), for=20 >>a IP that belongs to a network, to an instance within the same network. >> >>Using createPortForwardingRule API method seems good solution, but=20 >>we're not sure how to assign a port-range, as the API doesn't have=20 >>something like privateendport & publicendport. >>we definitely don't want to do ~130k API calls specifying all TCP/UDP=20 >>ports separately. >Port ranges are not supported in createPortForwarding rule API. Found the same in API manual. but it is indeed possible; we patched crea= tePortForwardingRule method to just have public/private endport parameter a= nd its working. Are there some reasons why it's not provided in CloudStack 3.x? >>did we overlook some way of using the network source nat address as=20 >>the static nat address for an instance? or some another solution to=20 >>achieve the same? >We do have static nat support in cloudStack. Following commands need to be= called >* enableStaticNat&virtualMachineId=3D&ipAddressId=3D - m= aps vm to public ip address >* createFirewallRule&ipAddressId=3D&startPort&endPort - opens = access to the public ip address for specific port range > I'm afraid, Not if you want to to use the network's source nat IP address = as the static nat address for an instance. It gives an error saying "Can't = enable static, ip address Ip[10.11.101.156-1] is a sourceNat ip address" >Hope this solution helps you. >-Alena. >> >>Regards >>/Mukesh >> >> Cheers /Mukesh