Re: [Add Firewall Rules for SNMP on VPC]

2017-11-21 Thread Gian Paolo Buono 
Hi Renè,

The CS version is 4.9.1 and permitt all egress rules.

Bye

GPB
Inviato da smartphone Samsung Galaxy.


 Messaggio originale 
Da: Rene Moser 
Data: 21/11/17 15:12 (GMT+01:00)
A: users@cloudstack.apache.org
Oggetto: Re: [Add Firewall Rules for SNMP on VPC]

Hi Gian Paolo

Which cloudstack release? Do you have any egress rules?

Regards
René

On 11/21/2017 02:47 PM, Gian Paolo Buono wrote:
>
> Hi all,
>
> I need to monitorng with snmp a VPC from internal network. I have a vm
> on the same vlan and have configure snmp on VPC to accept the query snmp
> from internal network,  but the firewal block this query.  how can I do ?
>
> Thanks
>

Fail with vpn customer gateway creation through terraform

2017-11-21 Thread Nux! 
Hi,

I'm trying out terraform and had success so far, except for the vpn customer 
gateway feature.
For some reason, terraform fails to create it, though I use the same options as 
in UI/cloudmonkey where it works just fine.

The snippet for it is:

resource "cloudstack_vpn_customer_gateway" "default" {
  name   = "test-vpc"
  cidr   = "10.0.0.0/24"
  esp_policy = "aes256-sha1"
  gateway= "1.2.3.4"
  ike_policy = "sha1-aes256;modp3072"
  ipsec_psk  = "terraformxyz7"
}

It always complains about the ike_policy:
* cloudstack_vpn_customer_gateway.default: Error creating VPN Customer Gateway 
test-vpc: Undefined error: {"errorcode":431,"errortext":"The customer gateway 
IKE policy sha1-aes256;modp3072 is invalid!  Verify the required Diffie Hellman 
(DH) group is specified."}

I tried all sorts of ways to write the ike_policy, escaped, web 
encoded/decoded, nothing worked. What am I missing?
The example terraform docs provide suffers the same fate.

Lucian

--
Sent from the Delta quadrant using Borg technology!

Nux!
www.nux.ro

Re: [Add Firewall Rules for SNMP on VPC]

2017-11-21 Thread Rene Moser 
Hi Gian Paolo

Which cloudstack release? Do you have any egress rules?

Regards
René

On 11/21/2017 02:47 PM, Gian Paolo Buono wrote:
> 
> Hi all,
> 
> I need to monitorng with snmp a VPC from internal network. I have a vm 
> on the same vlan and have configure snmp on VPC to accept the query snmp 
> from internal network,  but the firewal block this query.  how can I do ?
> 
> Thanks
>

[Add Firewall Rules for SNMP on VPC]

2017-11-21 Thread Gian Paolo Buono 

Hi all,

I need to monitorng with snmp a VPC from internal network. I have a vm 
on the same vlan and have configure snmp on VPC to accept the query snmp 
from internal network,  but the firewal block this query.  how can I do ?

Thanks

Re: Any way to cause CloudStack to use non-primary NIC

2017-11-21 Thread Rohit Yadav 
Jay - if you want to switch the default nic of your VM instance to some other 
nic try this -- using UI -> go to the VM->Nic->Scroll to the nic you want to 
set as default, click the "Set default NIC" button and after the operation 
completes fix the nic inside your VM.


Alternatively, try the API:


(local)  > update defaultnicforvirtualmachine -h
(updateDefaultNicForVirtualMachine) Changes the default NIC on a VM
This API is asynchronous.
Required params are nicid virtualmachineid
Parameters
==
nicid = (uuid) NIC ID
virtualmachineid = (uuid) Virtual Machine ID



- Rohit


From: Jay Hahn-Steichen 
Sent: Monday, November 20, 2017 12:14:16 PM
To: users@cloudstack.apache.org
Subject: Any way to cause CloudStack to use non-primary NIC

All:

I would like to experiment with a cloudstack configuration where the
primary NIC (e.g. eth0) is used only for logging into the server directly,
and the cloudstack components use eth1.  The two nics are on different LAN
segments.

From my reading of the docs, there is a built-in assumption that cloudstack
will use eth0.  Is there a place/way to change this default behavior?

Thanks.
--jay

rohit.ya...@shapeblue.com 
www.shapeblue.com
53 Chandos Place, Covent Garden, London  WC2N 4HSUK
@shapeblue