Hi , all
There is a bug in com.cloud.network.resource.JuniperSrxResource
It will report syntax error when configure outgress rule to Juniper srx
hardware firewall.
begin line 2830 :
if
(type.equals(SecurityPolicyType.SECURITYPOLICY_EGRESS_DEFAULT)) {
if (defaultEgressAction == false) {
//for default policy is false add default deny rules
action = "<deny></deny>";
} else {
action = "<permit></permit>";
}
} else {
if (defaultEgressAction == true) {
//configure egress rules to deny the traffic when
default egress is allow
action = "<deny></deny>";
} else {
action = "<permit></permit>";
}
//error here
xml = replaceXmlValue(xml, "action", action);
}
fix:
if
(type.equals(SecurityPolicyType.SECURITYPOLICY_EGRESS_DEFAULT)) {
if (defaultEgressAction == false) {
//for default policy is false add default deny rules
action = "<deny></deny>";
} else {
action = "<permit></permit>";
}
} else {
if (defaultEgressAction == true) {
//configure egress rules to deny the traffic when
default egress is allow
action = "<deny></deny>";
} else {
action = "<permit></permit>";
}
}
//move replace out
xml = replaceXmlValue(xml, "action", action);
gust
Being china.
2016-08-24
