[ https://issues.apache.org/jira/browse/CLOUDSTACK-6083?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13900023#comment-13900023 ]
Jayapal Reddy commented on CLOUDSTACK-6083: ------------------------------------------- I have created upgrade to 4.3, this setup has SRX firewall network. Observed missing cidrs issue in this network. > Missing cidrlist in 4.3 adv zone firewall > ----------------------------------------- > > Key: CLOUDSTACK-6083 > URL: https://issues.apache.org/jira/browse/CLOUDSTACK-6083 > Project: CloudStack > Issue Type: Bug > Security Level: Public(Anyone can view this level - this is the > default.) > Affects Versions: 4.3.0 > Environment: CentOS 6.5 HVs and mgmt, adv zone (without sg) > Reporter: Nux > Assignee: Jayapal Reddy > Priority: Critical > > It's the first time I'm testing firewall in 4.3 Advanced zone (without SG) > so please let me know if I'm missing something obvious; I notice the cidrlist > is missing from the rules, both in UI and in cloudmonkey. > If I create the rule from cloudmoneky it also doesn't register a cidrlist, so > it doesn't seem to be UI's fault. > This is what I see in the logs http://fpaste.org/75819/39203643/ when I > create a rule. Anyone else experiencing this? > Do note: > This is a (until now successfull) upgrade from 4.2.1. > The cidrs make it into the firewall_rules_cidrs table. > I also checked inside the VR and while iptables does have rules for the ports > I mentioned, the CIDRs are missing, too. > See http://img.nux.ro/3Kk-Selection_050.png > mycloudmonkey > list firewallrules id=835dfc08-beab-458a-9c30-6b0b2b11f201 > count = 1 > firewallrule: > id = 835dfc08-beab-458a-9c30-6b0b2b11f201 > cidrlist = > endport = 65535 > ipaddress = 172.16.72.212 > ipaddressid = f481629a-deb6-4413-b253-e8e98d8a303a > networkid = c615df7c-3ea3-4138-a83c-d848e20fe1f6 > protocol = tcp > startport = 1 > state = Active > tags: -- This message was sent by Atlassian JIRA (v6.1.5#6160)