GitHub user rhtyd opened a pull request:
https://github.com/apache/cloudstack/pull/1614
CLOUDSTACK-9437: Fix egress chain and cleanup for allow all traffic
- Fixes use of rules.v4/rules instead of router_rules.v4 file, this makes
sure
that FW_EGRESS_RULE chain gets created on router systemvms
- Adds an explicit removal of allow all 0.0.0.0/0 (all protocol) egress rule
when adding the default egress rule (CLOUDSTACK-9437)
/cc @swill @jburwell @PaulAngus
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/shapeblue/cloudstack vr-fix-egress
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/cloudstack/pull/1614.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #1614
----
commit 7cde8edb833037cb247136f7c41a2d5242aa7864
Author: Rohit Yadav <[email protected]>
Date: 2016-07-21T19:54:32Z
CLOUDSTACK-9437: Fix egress chain and cleanup for allow all traffic
- Fixes use of rules.v4/rules instead of router_rules.v4 file, this makes
sure
that FW_EGRESS_RULE chain gets created on router systemvms
- Adds an explicit removal of allow all 0.0.0.0/0 (all protocol) egress rule
when adding the default egress rule (CLOUDSTACK-9437)
Signed-off-by: Rohit Yadav <[email protected]>
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
