ravening commented on a change in pull request #5397:
URL: https://github.com/apache/cloudstack/pull/5397#discussion_r714027504
##########
File path: systemvm/debian/opt/cloud/bin/cs/CsAddress.py
##########
@@ -504,7 +504,7 @@ def fw_vpcrouter(self):
self.fw.append(["filter", "front", "-A FORWARD -s
%s -d %s -j ACL_INBOUND_%s" %
(self.address["network"],
address["network"], address["device"])])
# Accept packet from private gateway if VPC VR is used as
gateway
- self.fw.append(["filter", "", "-A FORWARD -s %s ! -d %s -j
ACCEPT" %
+ self.fw.append(["filter", "front", "-A FORWARD -s %s ! -d %s
-j ACCEPT" %
Review comment:
@weizhouapache yes
```
# iptables -L FORWARD --line-numbers
Chain FORWARD (policy DROP)
num target prot opt source destination
1 ACCEPT all -- 10.32.18.192/27 !10.32.18.192/27
2 ACL_INBOUND_eth3 all -- 10.32.18.192/27 10.0.0.0/24
3 ACL_INBOUND_eth2 all -- 10.0.0.0/24 10.32.18.192/27
4 ACL_INBOUND_eth4 all -- 10.32.18.192/27 10.0.1.0/24
5 ACL_INBOUND_eth2 all -- 10.0.1.0/24 10.32.18.192/27
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
