Vladimir Ostrovsky created CLOUDSTACK-79:
--------------------------------------------
Summary: CloudStack 3.0.4: firewall rules not restored on KVM host
Key: CLOUDSTACK-79
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-79
Project: CloudStack
Issue Type: Bug
Components: KVM, Network Controller
Affects Versions: pre-4.0.0
Reporter: Vladimir Ostrovsky
I have CloudStack 3.0.4 with a Basic Zone defined. The Zone includes several
KVM hosts and uses Security Groups (in other words, IPtables on the hosts) to
isolate traffic between VMs.
The problem: if, for some reason, IPtables on the host are flushed or the
iptables service is restarted, the cloud-agent doesn't pull the correct rules
from the management server and doesn't synchronize the host with Security
Groups definitions in CloudStack. Restart of the cloud-agent service doesn't
help as well.
Shouldn't the agent do it?
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
