ts to add SG in this zone, user needs to
> change XS network mode from OVS mode to bridge mode because iptables
> doesn't work with OVS.
>
>
>
> Thanks,
> Anthony
>
>
>
>
>
>
>
>
>
> > -----Original Message-
> > From: Chiradeep Vittal
om OVS mode to bridge mode because iptables doesn't work with
OVS.
Thanks,
Anthony
> -Original Message-
> From: Chiradeep Vittal
> Sent: Thursday, March 07, 2013 3:18 PM
> To: cloudstack-dev@incubator.apache.org
> Cc: Anthony Xu
> Subject: Re: Securit
On 3/7/13 12:22 AM, "Dave Cahill" wrote:
>Hi Chiradeep,
>
>Thanks for jumping in, great to get feedback on this one.
>
>However, SecurityGroups are handled by SecurityGroupManagerImpl, which
>simply sends a Command to the agent without checking for, or calling
>into, a SecurityGroupsProvider. I
Hi Chiradeep,
Thanks for jumping in, great to get feedback on this one.
Let me back up and explain where we're coming from.
Let's take the Firewall service as an example. When a user sets
Firewall rules via the UI / API, the request (skipping a few steps for
brevity) ends up in FirewallManagerIm
Not sure I understand the thread below.
Security groups today are provided on the hypervisor level (dom0 / kvm
host).
There is currently a conundrum
- on XenServer Open vSwitch (OVS) is the defacto vswitch. OVS however
cannot do stateful packet inspection. This might entail switching to Linux
bri
ul Angus
S: +44 20 3603 0540 | M: +447711418784
paul.an...@shapeblue.com
-Original Message-
From: Mills, Joseph [mailto:j...@midokura.jp]
Sent: 05 March 2013 08:34
To: cloudstack-dev@incubator.apache.org
Cc: Anthony Xu
Subject: Re: Security Groups in Advanced Zone - Plugin Support
Hi Ant
Hi Anthony,
Any thoughts? We are looking forward to hearing back from you about this.
Just to recap:
(1) Your current changes add Security Group capabilities for the Virtual
Router in advance-shared only, is this correct?
(2) Your future plan is to add Security Groups to Virtual Router in
advanc
Hi Anthony,
Adding you in CC in case you missed this message.
We're trying to understand in more detail your plan for Security Groups
support.
Thanks,
Dave.
On Fri, Feb 15, 2013 at 3:19 PM, Mills, Joseph wrote:
> *Hi Anthony,
>
> Thanks for the quick response. Just to check my understanding:
*Hi Anthony,
Thanks for the quick response. Just to check my understanding:
CloudStack has 4 networking models:
Basic (Only in Basic Zone)
Isolated (Only in Advanced Zone)
Shared (Only in Advanced Zone)
VPC (Only in Advanced Zone)
Zones can be Security Group enabled, or Security Group disabled
I have plan to add isolated and shared networks to SG enabled zone in 4.2, the
service providers on these network will be supported in SG enabled zone, but as
for SG enabled shared network, current plan is only support Virtual Router as
service provider. If you want to add other service provider
10 matches
Mail list logo
