apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-10-26 08:42:29 +01:00
Code Issues Packages Projects Releases Wiki Activity

network: Fix security groups for CentOS (#2590)

Browse Source 
On RHEL/CentOS/Fedora the bridge related sysctl rules are enabled
in kernel by default but can only be disabled. Enabling those keys
will fail, causing iptables/ebtables tables to not be created
and fails SG on CentOS.

This also fixes an integration test case, which assumes first few
tests complete within 3 minutes. In nested env the value may be large,
this increases the value to 20 minutes.

Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
This commit is contained in:
Rohit Yadav 2018-04-23 16:54:03 +02:00 committed by GitHub
parent b5abdd306e
commit ea55a002cf
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
scripts/vm/network/security_group.py
View File

@ -1154,8 +1154,7 @@ def addFWFramework(brname):
execute("sysctl -w net.bridge.bridge-nf-call-iptables=1") execute("sysctl -w net.bridge.bridge-nf-call-iptables=1")
execute("sysctl -w net.bridge.bridge-nf-call-ip6tables=1") execute("sysctl -w net.bridge.bridge-nf-call-ip6tables=1")
except: except:
logging.debug("failed to turn on bridge netfilter") logging.warn("failed to turn on bridge netfilter")
return False
brfw = getBrfw(brname) brfw = getBrfw(brname)
try: try:

4
test/integration/smoke/test_routers.py
View File

@ -521,9 +521,9 @@ class TestRouterServices(cloudstackTestCase):
) )
if str(result[3]) == "min,": if str(result[3]) == "min,":
self.assertEqual( self.assertEqual(
(int(result[2]) < 3), (int(result[2]) < 20),
True, True,
"Check uptime is less than 3 mins or not" "Check uptime is less than 20 mins or not"
) )
else: else:
self.assertEqual( self.assertEqual(