[jira] [Commented] (CLOUDSTACK-9244) Wrong IP routes added to SystemVM when Public IP is in RFC-1918 space

ASF GitHub Bot (JIRA) Tue, 19 Jan 2016 14:16:37 -0800

    [ 
https://issues.apache.org/jira/browse/CLOUDSTACK-9244?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15107566#comment-15107566
 ]


ASF GitHub Bot commented on CLOUDSTACK-9244:
--------------------------------------------

Github user remibergsma commented on the pull request:

    https://github.com/apache/cloudstack/pull/1352#issuecomment-173005222
  
    `cloud-early-config` now logs:
    
    ```
    Not setting up route of RFC1918 space to 192.168.22.1 befause 192.168.23.2 
is RFC1918..
    ```
    
    Routes are not set as expected:
    ```
    root@v-85-VM: # route -n
    Kernel IP routing table
    Destination     Gateway         Genmask         Flags Metric Ref    Use 
Iface
    0.0.0.0         192.168.23.1    0.0.0.0         UG    0      0        0 eth2
    169.254.0.0     0.0.0.0         255.255.0.0     U     0      0        0 eth0
    192.168.22.0    0.0.0.0         255.255.255.0   U     0      0        0 eth1
    192.168.23.0    0.0.0.0         255.255.255.0   U     0      0        0 eth2
    ```
    
    And when it has a real public ip a route is set to the internal gw. That 
functionality still works and didn't change.
    
    ```
    Setting up route of RFC1918 space to 192.168.22.1 
    ```
    
    Routes are setup now:
    ```
    root@v-1357-VM: # route -n
    Kernel IP routing table
    Destination     Gateway         Genmask         Flags Metric Ref    Use 
Iface
    0.0.0.0         x.y.227.1       0.0.0.0         UG    0      0        0 eth2
    10.0.0.0        192.168.22.1    255.0.0.0       UG    0      0        0 eth1
    169.254.0.0     0.0.0.0         255.255.0.0     U     0      0        0 eth0
    172.16.0.0      192.168.22.1    255.240.0.0     UG    0      0        0 eth1
    192.168.0.0     192.168.22.1    255.255.0.0     UG    0      0        0 eth1
    192.168.22.0    0.0.0.0         255.255.255.0   U     0      0        0 eth1
     x.y.227.0      0.0.0.0         255.255.255.0   U     0      0        0 eth2
    ```


> Wrong IP routes added to SystemVM when Public IP is in RFC-1918 space
> ---------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-9244
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9244
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the 
> default.) 
>          Components: SystemVM
>    Affects Versions: 4.7.0
>         Environment: Centos7 Host
>            Reporter: Aerts Nick
>
> Even when a public ip is within RFC-1918 space routes to this ip space are 
> getting added to the routing table of the systemvm.
> Example routing table:
> Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
> 0.0.0.0         10.0.12.254     0.0.0.0         UG    0      0        0 eth2
> 10.0.0.0        10.0.10.254     255.0.0.0       UG    0      0        0 eth1
> 10.0.10.0       0.0.0.0         255.255.255.0   U     0      0        0 eth1
> 10.0.12.0       0.0.0.0         255.255.255.0   U     0      0        0 eth2
> 169.254.0.0     0.0.0.0         255.255.0.0     U     0      0        0 eth0
> 172.16.0.0      10.0.10.254     255.240.0.0     UG    0      0        0 eth1
> 192.168.0.0     10.0.10.254     255.255.0.0     UG    0      0        0 eth1
> This causes the systemvm to be unreachable from within the 10.0.0.0/8 address 
> range



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (CLOUDSTACK-9244) Wrong IP routes added to SystemVM when Public IP is in RFC-1918 space

Reply via email to