Wilder Rodrigues created CLOUDSTACK-9018:
--------------------------------------------
Summary: Egress rule with 0.0.0.0/0 - all (protocol) doesn't get
removed from the VR
Key: CLOUDSTACK-9018
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9018
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: Virtual Router
Affects Versions: 4.6.0
Reporter: Wilder Rodrigues
Assignee: Wilder Rodrigues
Steps:
1. Deploy a virtual machine on an isolated network with default egress DENY
2. Add egress rules: 0.0.0.0/0 - protocol ALL
3. Check the router
Chain FW_EGRESS_RULES (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
4. Delete the egress rules and check the router again
5. The result is the same: the rule is still there.
6. Try adding the same rule again: 0.0.0.0/0 - protocol ALL
7. Check the router:
Chain FW_EGRESS_RULES (1 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere
But if I add something like:
0.0.0.0/0 - tcp - 80 - 80
It works fine! I can remove and add again and the routers remains configured
properly.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
