[ https://issues.apache.org/jira/browse/CLOUDSTACK-3195?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bryan Whitehead updated CLOUDSTACK-3195: ---------------------------------------- Description: As a non-admin user, create a new Isolated network with SNAT. Build a VM using this network. After VM is up, In the new isolated network add a firewall rule (port 22 as example). Next add a forward for private range 22-22 and public 22-22, choose the VM in network. Verify the forward and firewall rule work (ssh SNAT-IP etc). KEY BUG: Delete the VM in the isolated network. After the delete there will be no way to delete or see the rule to remove the forward. (AS a NON-ADMIN user) Create a new VM using the same isolated network. When attempting to setup a new forward to this VM you'll get an error about a rule already existing as a conflict - however you won't be able to delete it. The admin user can see the bogus rule and delete it. Then everything works as expected. was: As a non-admin user, create a new Isolated network with SNAT. Build a VM using this network. After VM is up, In the new isolated network add a firewall rule (port 22 as example). Next add a forward for private range 22-22 and public 22-22, choose the VM in network. Verify the forward and firewall rule work (ssh SNAT-IP etc). KEY BUG: Delete the VM in the isolated network. After the delete there will be no way to delete or see the rule to remove the forward. Create a new VM using the same isolated network. When attempting to setup a new forward to this VM you'll get an error about a rule already existing as a conflict - however you won't be able to delete it. The admin user can see the bogus rule and delete it. Then everything works as expected. > cannot view/delete forward rules if underlying/target VM is destroyed first > --------------------------------------------------------------------------- > > Key: CLOUDSTACK-3195 > URL: https://issues.apache.org/jira/browse/CLOUDSTACK-3195 > Project: CloudStack > Issue Type: Bug > Security Level: Public(Anyone can view this level - this is the > default.) > Components: Network Controller > Affects Versions: 4.1.0 > Environment: CentOS 6.4+latest patches with official 4.1.0 RPM > release from Apache > Reporter: Bryan Whitehead > > As a non-admin user, create a new Isolated network with SNAT. Build a VM > using this network. > After VM is up, In the new isolated network add a firewall rule (port 22 as > example). Next add a forward for private range 22-22 and public 22-22, choose > the VM in network. > Verify the forward and firewall rule work (ssh SNAT-IP etc). > KEY BUG: Delete the VM in the isolated network. After the delete there will > be no way to delete or see the rule to remove the forward. (AS a NON-ADMIN > user) > Create a new VM using the same isolated network. When attempting to setup a > new forward to this VM you'll get an error about a rule already existing as a > conflict - however you won't be able to delete it. > The admin user can see the bogus rule and delete it. Then everything works as > expected. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira