ravening commented on pull request #5397: URL: https://github.com/apache/cloudstack/pull/5397#issuecomment-924872523
> > > yes these rules are applied only when public ip and gateway are same.... but in our case they are different. > > > > > > @ravening > > I personally think you can the code changes in this PR in your fork. > > but this is not the final solution in my opinion. > > There might be a problem with firewall rules but I was not able to reproduce the issue. > > @ravening > for your information, here is what I have tested > (1) create a shared network (any test Ip range), for example 10.10.10.254/24. create a vm. > (2) create a vpc, a vpc tier, and a vm > (3) add private gateway, vlan is same as shared network in (1), IP is same as gateway (10.10.10.254). > (4) verify the connection between the vm in vpc and the vm in shared network. @weizhouapache we found out the issue. the rule has to be added the beginning by passing "front" in the command. In that case we dont need to put this rule outside of the if condition. so this is what we tested 1. make private gateway and public ip as same, 2. pass "front" parameter to iptable rule which is present inside the if condition. 3. everything works fine. i will make the code change and update the pr -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
