Where should I add a firewall rule, manually using iptables inside the
Virtual Router?
Consider that I have no firewall in my network layout preventing ICMP to
reach the Virtual Router.
On Fri, Dec 20, 2013 at 1:57 AM, Andrei Mikhailovsky and...@arhont.comwrote:
Francesco,
I believe you
The VR is configured to not respond to pings, probably a anti DDOS measure.
If you restart the VR it will respond to pings whilst it is booting, but then
the security policies kick in and the responses stop.
Regards
Geoff Higginbottom
CTO / Cloud Architect
D: +44 20 3603
Hi Shanker ,
Please check following procedure , Let us know if you require more detail.
Scaling up is two-step process
1-While deploying vm CS configure memory-static-min(=memory in compute
offering) , memory-static-max(=4*memory-static -min) based on vm current CO .
Thanks for the clarification, it makes sense.
So far I have instances attached to the 10.1.1.0/24 guest network, and I
have Internet connection through the Virtual Router source-NAT feature.
But now, I would like to take one public IP and configure it directly on
one instance.
Do I need a
You could create a network offering with only DNS, DHCP UserData services and
also the Specify VLAN option enabled, then use this to create a guest network
with public IPs. You would need to ensure the chosen IP Range and VLAN Zmaps
through to a physical router.
Alternatively you could try
There is already a bug filed for this issue:
https://issues.apache.org/jira/browse/CLOUDSTACK-4402
--Sanjay
-Original Message-
From: 卢惠勇 [mailto:luhuiy...@conew.com]
Sent: Friday, December 20, 2013 11:54 AM
To: users@cloudstack.apache.org
Subject: lxc cluster can't add primary storage
Hi all,
I would like to deploy Cloudstack instances behind a vrouter configured with
routing and firewalling services. I don't want NAT feature on vRouter. Some
application do not support NAT and management is less simple. It seems that,
actually, this configuration is not possible. Am I
Hi,
Actually, I use a shared guest network for that.
The subnet is routed by a simple debian, and the CS IPAM stuff gives
single public ip's for VM-s.
Of course, You don't have firewall capabilities in the GUI, but with
public IP, the firewalling should be done by the user inside the VM.
Hi All,
I've installed CS4.2 with basic networking mode, and I cannot get
network usage(NETWORK_BYTES_SENT and NETWORK_BYTES_RECEIVED). But I can
get from my CS4.2 with advanced networking mode.
Who can tell me why? Thank you.
Regards,
Steven
Hi All,
I've installed CS4.1.1 with advance networking mode.
Template registration, but will not work from 16% download status.
I can not remove it and it is this state.
do you can remove this template?
Different templates have been successfully downloaded
Regards,
Wantata222
Hey All,
I realize that this is a highly unusual use case, but here we are.
I have a 2U, 4 node server going to the Colo and I want to use all the
nodes as vm hosts.
The biggest thing though, I want to firewall off the management network
using pfSense or some other software firewall VM that
Prashant - thanks for the detailed answer. I will add/correct one thing.
The formula for computing the XS side memory params are explained @ [1]
Copying the excerpt from the link
* static min = service_offering / memory_overprovisioning_of_cluster.
* dynamic min = service_offering /
On 20-Dec-2013, at 11:43 pm, Nitin Mehta nitin.me...@citrix.com wrote:
Prashant - thanks for the detailed answer. I will add/correct one thing.
The formula for computing the XS side memory params are explained @ [1]
Copying the excerpt from the link
* static min = service_offering /
Geoff,
since my VM has only one NIC in the 10.1.1.0/24 subnet, in order to try the
Static NAT feature to I need to acquire a new secondary IP for that NIC?
On Fri, Dec 20, 2013 at 10:54 AM, Geoff Higginbottom
geoff.higginbot...@shapeblue.com wrote:
You could create a network offering with
On 21-Dec-2013, at 12:43 am, Shanker Balan shanker.ba...@shapeblue.com wrote:
On 20-Dec-2013, at 11:43 pm, Nitin Mehta nitin.me...@citrix.com wrote:
Prashant - thanks for the detailed answer. I will add/correct one thing.
The formula for computing the XS side memory params are explained @ [1]
15 matches
Mail list logo
