Quick update on this issue: - Added two additional IP's to my network. Now I have 10.50.10.102 (SourceNAT), .104 and .106 (three public ip's) - Added firewall and portmapping rules to .104 for ports 22 and 8080 - Added LB rule to .106 (public 80 to private 8080)
Now I can ssh into .104 which goes into 10.0.10.239 (my vm's guest ip). And started tcpdump port 8080 When I telnet into .106 on port 80, I can see tcpdump activity on port 8080 on the vm. I will install a real http server on this vm and see if it works as advertised :) Last question for me is what does .102 do in this mix? Thanks. Amin ________________________________ From: Amin Pashapour <jol...@yahoo.com> To: "users@cloudstack.apache.org" <users@cloudstack.apache.org> Sent: Thursday, March 13, 2014 6:53 PM Subject: Re: F5 and CloudStack Hi Chandan Below is what my network offering shows: Supported Services:UserData, Firewall, Vpn, Dhcp, StaticNat, Lb, Dns, PortForwarding, SourceNat Service Capabilities: UserData: VirtualRouter, Firewall: VirtualRouter, Vpn: VirtualRouter, Dhcp: VirtualRouter, StaticNat: VirtualRouter, Lb: F5BigIp, Dns: VirtualRouter, PortForwarding: VirtualRouter, SourceNat: VirtualRouter Thanks Amin ________________________________ From: Chandan Purushothama <chandan.purushoth...@citrix.com> To: "users@cloudstack.apache.org" <users@cloudstack.apache.org> Sent: Thursday, March 13, 2014 5:46 PM Subject: RE: F5 and CloudStack Hello Amin, May I know whether you added Port Forwarding Service to your Network Offering, Thank you, Chandan. -----Original Message----- From: Amin Pashapour [mailto:jol...@yahoo.com] Sent: Wednesday, March 12, 2014 2:21 PM To: users@cloudstack.apache.org Subject: Re: F5 and CloudStack Chandan Purushothama <Chandan.Purushothama@...> writes: > > Hello Amin, > > May I know if you are able to work with a VM deployed in a network > created using > "DefaultIsolatedNetworkOfferingWithSourceNatService". This will prove > that your Guest VLAN range > and Public VLAN are valid, > > Thank you, > Chandan. > > -----Original Message----- > From: Amin Pashapour [mailto:jolfa1@...] > Sent: Wednesday, March 12, 2014 1:09 PM > To: users@... > Subject: F5 and CloudStack > > Hi All > > I am trying to add an F5 BigIP (10.1) into my CloudStack (4.2.1) environment. > > This is what I have done: > 1- Created a network offering with VR to do everything, including > Source and Static NAT, except BL using F5BigIP. > 2- Created a network based on the offering. Added egress rule for 0.0.0.0/0 for all protocols. > 3- Created a VM using Centos template and the network from step 2 > 4- Added a firewall rule to the "public" ip of the network for tcp > ports 1- 64000. > 5- Can't add port forwarding to the public ip. > > I get into the VM's console and the network is up. However, I can't ping/ssh to any other system. > > No system can ping/ssh my VM. This is similar to what someone named > Anoop had observed in April of 2013. > > Can someone give me a hint or two on what I am missing? > > Thanks. > > Hi Chandan. Other VM's using DefaultIsolatedNetworkOfferingWithSourceNatService work perfectly fine. I can ssh with no problems. Of course, I had to add a port forwarding rule to let port 22 through. When I try to add a port forwarding rule with the F5 offering network, I get this error: The IP <public ip> is already used as SourceNAT rather than PortForwarding. And I can't go any further. Thanks
