thank you very much.
the rule looks good, but so strange, i can ping the two guest vms [
i-2-7-VM, i-3-8-VM] on my work host.
[ranger@ranger cloudstack]$ ping 192.168.253.66
PING 192.168.253.66 (192.168.253.66) 56(84) bytes of data.
64 bytes from 192.168.253.66: icmp_seq=1 ttl=59 time=4.40
Hi,
The rules are looking as expected.
The ingress traffic to vm should block.
Can you run 'iptables -L -nv' and see which rules are accepting the ingress
traffic.
Thanks,
Jayapal
On 30-Aug-2013, at 7:41 AM, Jijun wrote:
> i clone branch 4.2 code, package and do a fresh installation.
>
> hy
i clone branch 4.2 code, package and do a fresh installation.
hypervisor : xenserver 6.2 change openvswitch to bridge.
add basic zone ,security group enabeld.
create a new vm , default security group
the previous version document said the ingress will be blocked by
default. but in my te
