Upgrade from ACS 4.9.X to 4.11.0 broke VPC source NAT

Hello, I have been posting to the users thread about this issue. here is a quick summary in case if people contributing to the source nat code on the VPC side would like to fix this issue. Problem summary: no connectivity between virtual machines behind two Static NAT networks. Problem ca

Re: Upgrade from ACS 4.9.X to 4.11.0 broke VPC source NAT

Hi Andrei, I've fixed this recently, please see https://github.com/apache/cloudstack/pull/2579 As a workaround you can add routing rules manually. On the PR, there is a link to a comment that explains the issue and suggests manual workaround. Let me know if that works for you. Regards. From:

Re: Upgrade from ACS 4.9.X to 4.11.0 broke VPC source NAT

Thanks - Original Message - > From: "Rohit Yadav" > To: "dev" , "dev" > Sent: Friday, 20 April, 2018 10:35:55 > Subject: Re: Upgrade from ACS 4.9.X to 4.11.0 broke VPC source NAT > Hi Andrei, > > I've fixed this recently, please see > https://github.com/apache/cloudstack/pull/2579 >

Re: [DISCUSS] Why we MARK packets?

Thanks Jayapal. I don't have any comparative study yet, but I'll explore this in future if we can get away without marking (mangling) packets which is generally an expensive task. - Rohit From: Jayapal Uradi Sent: Thursday, A

[ASK][PARTICIPATE] Test new cloudmonkey v6.0.0-alpha1

All, The go-based port is functionally complete! I would like to invite interested users to help test it. You can build yourself the binaries from here: github.com/apache/cloudstack-cloudmonkey Alternatively, you can test using pre-built binaries from here: https://lab.yadav.cloud/testing/

[DISCUSS] 4.11.1.0 release

All, I would like to kick a discussion around the next 4.11 LTS minor/bugfix release - 4.11.1.0. Many of us have tried to discuss, triage and fix issues that you've reported both on users and dev MLs. It is possible that some of those discussions have not met a conclusion/solution yet. There

Re: [DISCUSS] Why we MARK packets?

https://markandruth.co.uk/2016/08/08/testing-the-performance-of-the-linux-firewall Does not directly address marking but does benchmark a number of iptables filtering tasks which may give some insight into the performance implications of using iptables for routing and filtering. https://www.di

Re: [DISCUSS] CloudStack graceful shutdown

Rafael and Community All is well and good and i think we are thinking along the similar lines - the only issue that i see right now with any approach is KVM Agents (or direct agents) and using LoadBalancer on 8250. Here is a scenario: You have 2 Management Server setup fronted with a VIP on 8250

Re: [DISCUSS] CloudStack graceful shutdown

Is that management server load balancing feature using static configurations? I heard about it on the mailing list, but I did not follow the implementation. I do not see many problems with agents reconnecting. We can implement in agents (not just KVM, but also system VMs) a logic that instead of u