Sanjeev N created CLOUDSTACK-1289:
-------------------------------------
Summary: [F5-SRX-InlineMode] Usage stats are not generated for
Juniper SRX Firewall in inlinemode
Key: CLOUDSTACK-1289
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-1289
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: Usage
Affects Versions: 4.1.0
Environment: ASF 4.1 branch latest code
Reporter: Sanjeev N
Assignee: Kishan Kavala
Priority: Blocker
Fix For: 4.1.0
[F5-SRX-InlineMode] Usage stats are not generated for Juniper SRX Firewall in
inlinemode
1. Create a NO using SRX for PF,Static NAT, Source Nat (Zone wide) and F5 for
LB and rest of the services are provided by VR.
2. Add SRX device
3. Add F5 device is "Inline" mode and with "Shared" LB isolation mode
4. Add a user account.
5. Deploy few VMs using the above created NO.
6. Acquire Ip address.
7. Create a PF rules on this ipaddress.
8. Acquire another Ip address.
9. Create a Static NAT on this ipaddress.
10. Acquire another Ip address.
11. Create a LB rule on this ipaddress.
12. Exersize the PF, Static NAT and Lb rules so that network tarffic is created.
Observations:
===========
user_statistics table in cloud db does not have an entry created for
external_firewall provider. Following is the user_statistics table output:
mysql> select * from user_statistics;
+----+----------------+------------+-------------------+-----------+----------------------+------------+--------------------+----------------+------------------------+--------------------+--------------------+----------------+
| id | data_center_id | account_id | public_ip_address | device_id |
device_type | network_id | net_bytes_received | net_bytes_sent |
current_bytes_received | current_bytes_sent | agg_bytes_received |
agg_bytes_sent |
+----+----------------+------------+-------------------+-----------+----------------------+------------+--------------------+----------------+------------------------+--------------------+--------------------+----------------+
| 1 | 1 | 2 | NULL | 34 |
DomainRouter | 204 | 0 | 0 |
0 | 0 | 0 | 0 |
| 2 | 1 | 2 | 10.147.48.26 | 5 |
ExternalLoadBalancer | 204 | 0 | 0 |
0 | 0 | 0 | 0 |
| 3 | 1 | 4 | NULL | 58 |
DomainRouter | 209 | 0 | 0 |
85917 | 307236 | 85917 | 303636 |
| 4 | 1 | 2 | NULL | 78 |
DomainRouter | 210 | 0 | 0 |
0 | 0 | 0 | 0 |
| 5 | 1 | 2 | NULL | 86 |
DomainRouter | 211 | 0 | 0 |
0 | 0 | 0 | 0 |
| 6 | 1 | 2 | 10.147.48.27 | 5 |
ExternalLoadBalancer | 211 | 0 | 0 |
0 | 0 | 0 | 0 |
| 7 | 1 | 2 | NULL | 89 |
DomainRouter | 204 | 0 | 0 |
0 | 0 | 0 | 0 |
+----+----------------+------------+-------------------+-----------+----------------------+------------+--------------------+----------------+------------------------+--------------------+--------------------+----------------+
7 rows in set (0.00 sec)
mysql> select * from external_firewall_devices;
+----+--------------------------------------+---------------------+---------------+--------------------+--------------+--------------+------------------+---------+----------+
| id | uuid | physical_network_id |
provider_name | device_name | device_state | is_dedicated |
allocation_state | host_id | capacity |
+----+--------------------------------------+---------------------+---------------+--------------------+--------------+--------------+------------------+---------+----------+
| 1 | dcea4ae1-e388-4c10-ad2a-522f04fcb6a2 | 200 | JuniperSRX
| JuniperSRXFirewall | Enabled | 0 | Free |
4 | 50 |
+----+--------------------------------------+---------------------+---------------+--------------------+--------------+--------------+------------------+---------+----------+
1 row in set (0.06 sec)
mysql> select * from external_load_balancer_devices;
+----+--------------------------------------+---------------------+---------------+---------------------+----------+--------------+------------------+--------------+------------+---------+----------------+
| id | uuid | physical_network_id |
provider_name | device_name | capacity | device_state |
allocation_state | is_dedicated | is_managed | host_id | parent_host_id |
+----+--------------------------------------+---------------------+---------------+---------------------+----------+--------------+------------------+--------------+------------+---------+----------------+
| 1 | c96b231d-b005-4914-8e4c-408223aadfe6 | 200 | F5BigIp
| F5BigIpLoadBalancer | 50 | Enabled | Shared |
0 | 0 | 5 | 0 |
+----+--------------------------------------+---------------------+---------------+---------------------+----------+--------------+------------------+--------------+------------+---------+----------------+
1 row in set (0.00 sec)
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
