[
https://issues.apache.org/jira/browse/CLOUDSTACK-8710?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14695014#comment-14695014
]
ASF GitHub Bot commented on CLOUDSTACK-8710:
--------------------------------------------
Github user jayapalu commented on the pull request:
https://github.com/apache/cloudstack/pull/690#issuecomment-130602329
@remibergsma
I thought you are only looking at the rules issue. You can look at the
other issues in s2s vpn.
You might have observed it but making it to your notice In below rule
space is needed at '%s -m' .
- self.fw.append(["nat", "front", "-A POSTROUTING -t nat -o %s-m
mark --set-xmark 0x525/0xffffffff -j ACCEPT" % dev])
+ self.fw.append(["nat", "front", "-A POSTROUTING -t nat -o %s -m
mark --mark 0x525/0xffffffff -j ACCEPT" % dev])
I am actually looking at the ipsec with strongswan so I need s2s vpn
iptables rules to applied for my testing.
> site2site vpn iptables rules are not configured on VR
> -----------------------------------------------------
>
> Key: CLOUDSTACK-8710
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-8710
> Project: CloudStack
> Issue Type: Bug
> Security Level: Public(Anyone can view this level - this is the
> default.)
> Components: Network Devices
> Affects Versions: 4.6.0
> Reporter: Jayapal Reddy
> Assignee: Remi Bergsma
> Priority: Critical
>
> 1. Configure vpc
> 2. Configure site2site vpn
> 3. After configuration go to VR and check the iptables rules of VR.
> Observed that there no rules configured on ports 500, 4500.
> In configure.py there is method 'configure_iptables' which is having rules
> but these are not getting applied on VR on site2site vpn configuration.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
