Yes. I have an existing VR that is set up in the “normal” way. This is advanced networking without security groups.
The VR has a public interface and an interface on an isolated network (private). This is not a VPC, just a VR. The public interface has a few IP addresses assigned to it. The private interface has one. On a public IP, I have opened a port to be allowed in the firewall: Source CIDR: 0.0.0.0/0 Protocol: TCP Start Port: 475 End Port: 475 In the Port Forward settings, I have forwarded this port to a VM: Private Port Start: 475 Private Port End: 475 Public Port Start: 475 Public Port End: 475 Protocol: TCP Instance: Selected Instance (I know its listening) When I do a PCAP on the instance, I don’t see any packets on my port hitting the interface. I then checked the VR. I ran a PCAP on the pubic side, I see my packet hit the VR. I run a PCAP on the private side, I dont see my packet. I have rebuilt the network, rebooted the VR (even though rebuilding reboots it anyway), rebooted the instance. I have other port forwards configured in the same manner going to some other instances and they work fine. This router has not been touched since the update from 4.18.x to 4.19.x. This is the first time something is being added to it. The version of the software on the router is 4.19.0.2 Regards, Marty Godsey Rudio, LLC Book Time: https://calendly.com/rudio-martyg Support: supp...@rudio.net<mailto:supp...@rudio.net?subject=Rudio%20Support> Ph: 859-328-1100 The content of this email is intended for the person or entity to which it is addressed only. This email may contain confidential information. If you are not the person to whom this message is addressed, be aware that any use, reproduction, or distribution of this message is strictly prohibited. If you received this in error, please contact the sender and immediately delete this email and any attachments. From: Wei ZHOU <ustcweiz...@gmail.com> Date: Tuesday, October 22, 2024 at 11:09 AM To: users@cloudstack.apache.org <users@cloudstack.apache.org> Subject: Re: Issue with Port Forwards in VR. WARNING: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. Hi Marty, As I understand, #9053 is not a bug, it has been fixed by adding a network ACL for the private port. Can you share more details ? -Wei On Tue, Oct 22, 2024 at 4:52 PM Marty Godsey <mar...@rudio.net> wrote: > Hello, > > I see there is a bug filed for the issue I am seeing: > > https://github.com/apache/cloudstack/issues/9053 > > I see this bug was closed, and there is a workaround. Has the issue itself > been addressed? > > I am on 4.19.0.2. This used to work, and the existing entries are working, > but new entries are not. > > Regards, > Marty Godsey > >
