Jayapal Reddy created CLOUDSTACK-8030:
-----------------------------------------
Summary: Isolated network without firewall service doesn't allow
egress traffic
Key: CLOUDSTACK-8030
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-8030
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: Network Controller
Affects Versions: 4.5.0
Reporter: Jayapal Reddy
Assignee: Jayapal Reddy
Fix For: 4.5.0
An isolated network , created with an offering having DHCP, DNS, Source NAT, LB
(Netscaler), which doesn't use Firewall service from VR has Egress rules
default allow. But the iptables FW_Outbound chain doesn't have a rule to allow
traffic from VMs to outside networks.
This offering will be of no use even when the Egress default is allow all.
Either the user should not be allowed to create an offering without firewall or
the iptables rule should be added to allow egress traffic.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
