Anton Opgenoort created CLOUDSTACK-8945: -------------------------------------------
Summary: rp_filter=1 not set on VPC private gateway initially, but is set after restart of VPC router Key: CLOUDSTACK-8945 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-8945 Project: CloudStack Issue Type: Bug Security Level: Public (Anyone can view this level - this is the default.) Components: Virtual Router Affects Versions: 4.4.4 Reporter: Anton Opgenoort (on ACS4.4.4 with XenServer as hypervisor) Steps to reproduce: -create VPC router -Create private gateway on VPC router -now log on to the rVM via the hypervisor's link-local address root@r-46771-VM:~# sysctl net.ipv4.conf.eth2.rp_filter net.ipv4.conf.eth2.rp_filter = 0 Restart the rVM via CloudStack (NOT restart VPC but restart the underlying router via CloudStack) -log on again: root@r-46771-VM:~# sysctl net.ipv4.conf.eth2.rp_filter net.ipv4.conf.eth2.rp_filter = 1 The issue thus is that on initial creation it is not set, where it should be set immediately Note: when adding a regular network tier to the VPC config, that new interface IS configured with rp_filter=1. So it is limited to the private gateway NIC. -- This message was sent by Atlassian JIRA (v6.3.4#6332)