Does the network have port forwarding rules on other public ips ? Do they work ?
On Tuesday, October 22, 2024, Marty Godsey <mar...@rudio.net> wrote: > Yes. > > I have an existing VR that is set up in the “normal” way. This is advanced > networking without security groups. > > The VR has a public interface and an interface on an isolated network > (private). This is not a VPC, just a VR. > > The public interface has a few IP addresses assigned to it. The private > interface has one. > > On a public IP, I have opened a port to be allowed in the firewall: > > Source CIDR: 0.0.0.0/0 > Protocol: TCP > Start Port: 475 > End Port: 475 > > In the Port Forward settings, I have forwarded this port to a VM: > > Private Port Start: 475 > Private Port End: 475 > Public Port Start: 475 > Public Port End: 475 > Protocol: TCP > Instance: Selected Instance (I know its listening) > > When I do a PCAP on the instance, I don’t see any packets on my port > hitting the interface. I then checked the VR. I ran a PCAP on the pubic > side, I see my packet hit the VR. I run a PCAP on the private side, I dont > see my packet. > > I have rebuilt the network, rebooted the VR (even though rebuilding > reboots it anyway), rebooted the instance. > > I have other port forwards configured in the same manner going to some > other instances and they work fine. This router has not been touched since > the update from 4.18.x to 4.19.x. This is the first time something is being > added to it. > > The version of the software on the router is 4.19.0.2 > > Regards, > Marty Godsey > Rudio, LLC > > Book Time: https://calendly.com/rudio-martyg > Support: supp...@rudio.net<mailto:supp...@rudio.net?subject=Rudio% > 20Support> > Ph: 859-328-1100 > The content of this email is intended for the person or entity to which it > is addressed only. This email may contain confidential information. If you > are not the person to whom this message is addressed, be aware that any > use, reproduction, or distribution of this message is strictly prohibited. > If you received this in error, please contact the sender and immediately > delete this email and any attachments. > > > From: Wei ZHOU <ustcweiz...@gmail.com> > Date: Tuesday, October 22, 2024 at 11:09 AM > To: users@cloudstack.apache.org <users@cloudstack.apache.org> > Subject: Re: Issue with Port Forwards in VR. > WARNING: This email originated from outside of the organization. Do not > click links or open attachments unless you recognize the sender and know > the content is safe. > > > Hi Marty, > > As I understand, #9053 is not a bug, it has been fixed by adding a network > ACL for the private port. > > Can you share more details ? > > -Wei > > On Tue, Oct 22, 2024 at 4:52 PM Marty Godsey <mar...@rudio.net> wrote: > > > Hello, > > > > I see there is a bug filed for the issue I am seeing: > > > > https://github.com/apache/cloudstack/issues/9053 > > > > I see this bug was closed, and there is a workaround. Has the issue > itself > > been addressed? > > > > I am on 4.19.0.2. This used to work, and the existing entries are > working, > > but new entries are not. > > > > Regards, > > Marty Godsey > > > > >
