apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-10-26 08:42:29 +01:00
Code Issues Packages Projects Releases Wiki Activity

VR: Do not add iptables rules for the revoked ip addresses (#6189)

Browse Source
This commit is contained in:
Wei Zhou 2022-04-06 05:16:47 +02:00 committed by GitHub
parent 47454eca7d
commit c61ea9f96d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
systemvm/debian/opt/cloud/bin/cs/CsAddress.py
View File

@ -498,7 +498,7 @@ class CsIP:
if not inf.startswith("eth"): if not inf.startswith("eth"):
continue continue
for address in addresses: for address in addresses:
if "nw_type" in address and address["nw_type"] == "guest": if "nw_type" in address and address["nw_type"] == "guest" and address["add"]:
self.fw.append(["filter", "front", "-A FORWARD -s %s -d %s -j ACL_INBOUND_%s" % self.fw.append(["filter", "front", "-A FORWARD -s %s -d %s -j ACL_INBOUND_%s" %
(address["network"], self.address["network"], self.dev)]) (address["network"], self.address["network"], self.dev)])
self.fw.append(["filter", "front", "-A FORWARD -s %s -d %s -j ACL_INBOUND_%s" % self.fw.append(["filter", "front", "-A FORWARD -s %s -d %s -j ACL_INBOUND_%s" %