apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-11-02 11:52:28 +01:00
Code Issues Packages Projects Releases Wiki Activity
19,356 Commits 307 Branches 324 Tags
Commit Graph

476 Commits

Author SHA1 Message Date
anthony
d5d6c9f5f4 VPC : this is default iptables for vpc route 2012-07-27 15:04:42 -07:00
anthony
0369fa3101 VCP : for each network, there will be a seperate config file deriving from this one 2012-07-27 15:04:42 -07:00
anthony
59937838e5 VPC : create/destroy static nat 2012-07-27 15:04:42 -07:00
anthony
ae579c4cdd VPC : create/destroy static route 2012-07-27 15:04:42 -07:00
anthony
0d52ac205b VPC : create/destroy source NAT 2012-07-27 15:04:42 -07:00
anthony
9910176d76 VPC : create/destroy private Gateway 2012-07-27 15:04:41 -07:00
anthony
f7da1772b0 VPC : portforwarding script 2012-07-27 15:04:41 -07:00
anthony
952da87e19 VPC : basic network usage per guest network 2012-07-27 15:04:41 -07:00
anthony
744bfdce5f VPC : vpc loadbalancer script 2012-07-27 15:04:41 -07:00
anthony
7dc4231ea6 VPC : vpc ip assocate fix 2012-07-27 15:04:41 -07:00
anthony
165a21c62a VPC : vpc_acl.sh is for VPC access control list 2012-07-27 15:04:40 -07:00
anthony
05dc92c02c VPC : remove all rules for a plugged nic device 2012-07-27 15:04:40 -07:00
anthony
599dcb49d5 VPC : add vpc_func.sh 2012-07-27 15:04:40 -07:00
anthony
5edb646be2 VPC : ipassoc.sh typo fix 2012-07-27 15:04:40 -07:00
anthony
7fd73fc5ab VPC : add vpc_guestnw.sh 2012-07-27 15:04:40 -07:00
Sheng Yang
4d42845853 S2S VPN: Add back pfs=no for ipsec.conf 
According to ipsec.conf manual:

pfs

whether Perfect Forward Secrecy of keys is desired on the connection's keying
channel (with PFS, penetration of the key-exchange protocol does not compromise
keys negotiated earlier); Since there is no reason to ever refuse PFS, Openswan
will allow a connection defined with pfs=no to use PFS anyway. Acceptable values
are yes (the default) and no.

Found removing the option would make it impossible to work with no PFS setting
router. It may related to CS-15511.
 2012-07-23 19:35:08 -07:00
Sheng Yang
27d82f683b S2S VPN: Support for multiply VPN connections per VPC/VPN gateway 2012-07-23 19:03:29 -07:00
Sheng Yang
f1e2be7157 CS-15511: Fix parameter transfer in bash 
[Dropped Vmware support in this commit, due to lack of VMware support in VPC now]

Conflicts:

	plugins/hypervisors/vmware/src/com/cloud/hypervisor/vmware/resource/VmwareResource.java
 2012-07-23 14:51:40 -07:00
Sheng Yang
7d68e33323 S2S VPN: Use source NAT ip address for VPN gateway 
Conflicts:

	api/src/com/cloud/api/commands/CreateVpnGatewayCmd.java
	server/src/com/cloud/network/router/VpcVirtualNetworkApplianceManagerImpl.java
	server/src/com/cloud/network/vpc/VpcManagerImpl.java
 2012-07-23 14:44:05 -07:00
Sheng Yang
d855dff7c2 CS-6840: Fix wrong path of check s2s vpn script 2012-07-23 14:35:32 -07:00
bfederle
c8f72c9198 Merge branch 'master' into vpc 
Conflicts:
	ui/scripts/network.js
 2012-07-23 10:36:25 -07:00
David Nalley
67bc9c819a fixing some more license headers 2012-07-20 15:59:31 -04:00
Sheng Yang
a1333649db CS-15536: Insert VPN mangle policy to FORWARD and OUTPUT 
In order to get traffic tagged while ACL chain involved in PREROUTING chain.

Also using more generic tag checking in nat table.
 2012-07-17 17:23:11 -07:00
Alena Prokharchyk
353423acec Merge branch 'master' into vpc 
Conflicts:
	api/src/com/cloud/api/commands/ListFirewallRulesCmd.java
	api/src/com/cloud/api/response/FirewallResponse.java
	api/src/com/cloud/api/response/IPAddressResponse.java
	server/src/com/cloud/api/ApiDBUtils.java
	server/src/com/cloud/network/NetworkManagerImpl.java
	server/src/com/cloud/network/dao/FirewallRulesDaoImpl.java
	server/src/com/cloud/network/dao/NetworkDaoImpl.java
	server/src/com/cloud/server/ManagementServerImpl.java
 2012-07-06 12:04:10 -07:00
David Nalley
ecf2cd57f9 fixing license headers in marvin 2012-07-04 18:45:08 -04:00
Sheng Yang
1d97af3abf CS-6840: Add status checking for site 2 site VPN 2012-07-02 16:29:23 -07:00
Sheng Yang
cd9854336a CS-6840: Update ipsectunnel.sh 2012-07-02 16:27:38 -07:00
Clayton Weise
df062f1fe8 CS-6840: Add ipsectunnel script 2012-07-02 16:27:35 -07:00
anthony
4707888363 VPC : revert dnsmasq.conf 2012-06-15 14:33:22 -07:00
anthony
2deba9bd86 VPC : add vpc_vpn_l2tp.sh 2012-06-15 14:32:56 -07:00
anthony
10a578db46 VPC : fix nic hot plug script 2012-06-15 14:32:31 -07:00
anthony
d51e3443cb VPC : add nic hot plug script 2012-06-15 14:32:10 -07:00
anthony
a7462bb232 VPC : vpc_ipassosc.sh 2012-06-15 14:30:50 -07:00
anthony
768463d113 VPC : add new dnsmasq.conf for VPC domr 2012-06-15 14:30:39 -07:00
anthony
d49210e42b VPC : add new type vpcrouter in cloud-early-config 2012-06-15 14:30:31 -07:00
anthony
c7e440a1de VPC : revert iptables-router 2012-06-15 14:30:23 -07:00
anthony
fb7fc6fd91 VPC : revert change in cloud-early-config 2012-06-15 14:30:15 -07:00
anthony
d80476b93e VPC : add new ipassoc.sh for vpc 2012-06-15 14:30:07 -07:00
anthony
0f5775d446 VPC : revert changes in ipassoc.sh 2012-06-15 14:29:56 -07:00
anthony
95faedc09f VPC : bug fix 2012-06-15 14:29:47 -07:00
anthony
f1883e991c VPC : bug fix 2012-06-15 14:26:50 -07:00
anthony
edbf4a0ba7 VPC : many debug fix 2012-06-15 14:26:41 -07:00
anthony
c75fe80125 VPC : use routerProxy to call networkUsage.sh 
Conflicts:

	core/src/com/cloud/hypervisor/vmware/resource/VmwareResource.java
 2012-06-15 14:25:21 -07:00
anthony
a08c9e7890 VPC : move acl.sh ipassoc.sh to /opt/cloud/bin/ 2012-06-15 14:24:09 -07:00
anthony
daf1aa4b92 VPC, implement plug/unplug nic 2012-06-15 14:22:29 -07:00
anthony
1a621a01f5 typo fix 2012-06-15 14:19:02 -07:00
anthony
c442d6d7ab add guestnw.sh 
add acl.sh
merge setup_dhcpsvr and setup_route
 2012-06-15 14:18:47 -07:00
anthony
396fa72ee3 1. move control network to eth0 on domr 
2. if it is basic mode, use guest NIC as Control NIC
 2012-06-15 14:18:38 -07:00
Sheng Yang
96e7e3d1ca CS-15175: Fix public interfaces of redundant router 
We need to use ifup/ifdown to bring up the interfaces, because ifconfig don't
know the ip of the interface after we modify cloud-early-config to avoid
first start up of public interface.

Reviewed-by: Edison
 2012-05-31 17:58:02 -07:00
Sheng Yang
985757ffe6 CS-14421: Clean /etc/network/interfaces when sysytemvm reboot 
In order to make sure next time, booting process would use cloud-early-config's
setup, rather than networking scripts to bring up interfaces.

Reviewed-by: Kelven Yang
 2012-05-31 17:57:55 -07:00