Thanks Dag. I am running into a scenario where a VR is required for dhcp service on the public Internet facing vlan and want to restrict connections to known trusted sources only.
Has anyone in the community run into such a situation before and found a workaround ? Thanks, Varun -----Original Message----- From: Dag Sonstebo [mailto:dag.sonst...@shapeblue.com] Sent: Tuesday, March 06, 2018 05:41 PM To: firstname.lastname@example.org Subject: Re: Iptables on Virtual router EXTERNAL EMAIL Hi Varun, No there’s no method for this, all firewall rules for the VR are contained in the CloudStack database and written on demand when the VR is created or firewall changes made. Regards, Dag Sonstebo Cloud Architect ShapeBlue On 06/03/2018, 11:56, "Kumar, Varun" <varku...@virtela.net> wrote: Hello, Is it possible to write custom iptables on the Virtual router that's created by cloudstack and make it persistent across restarts ? It looks like /etc/iptables/router_rules.v4 on the VR is the file that's being created but I am looking for the script that creates this file. Any insight is appreciated. Thanks, Varun dag.sonst...@shapeblue.com www.shapeblue.com 53 Chandos Place, Covent Garden, London WC2N 4HSUK @shapeblue