Example 11 with SetFirewallRulesCommand
use of com.cloud.agent.api.routing.SetFirewallRulesCommand in project cloudstack by apache.
the class PaloAltoResourceTest method addEgressFirewallRule.
@Test
public void addEgressFirewallRule() throws ConfigurationException, Exception {
if (_context.containsKey("enable_console_output") && _context.get("enable_console_output").equals("true")) {
System.out.println("\nTEST: addEgressFirewallRule");
System.out.println("---------------------------------------------------");
}
_context.put("has_public_interface", "true");
_context.put("has_private_interface", "true");
_context.put("has_src_nat_rule", "true");
_context.put("has_isolation_fw_rule", "true");
_context.put("has_service_tcp_80", "true");
_resource.setMockContext(_context);
_resource.configure("PaloAltoResource", _resourceParams);
long vlanId = 3954;
List<FirewallRuleTO> rules = new ArrayList<FirewallRuleTO>();
List<String> cidrList = new ArrayList<String>();
cidrList.add("0.0.0.0/0");
FirewallRuleVO activeVO = new FirewallRuleVO(null, null, 80, 80, "tcp", 1, 1, 1, Purpose.Firewall, cidrList, null, null, null, FirewallRule.TrafficType.Egress);
FirewallRuleTO active = new FirewallRuleTO(activeVO, Long.toString(vlanId), null, Purpose.Firewall, FirewallRule.TrafficType.Egress);
rules.add(active);
SetFirewallRulesCommand cmd = new SetFirewallRulesCommand(rules);
cmd.setContextParam(NetworkElementCommand.GUEST_VLAN_TAG, Long.toString(vlanId));
cmd.setContextParam(NetworkElementCommand.GUEST_NETWORK_CIDR, "10.3.96.1/20");
Answer answer = _resource.executeRequest(cmd);
assertTrue(answer.getResult());
}
Also used :
Answer(com.cloud.agent.api.Answer)
IpAssocAnswer(com.cloud.agent.api.routing.IpAssocAnswer)
ArrayList(java.util.ArrayList)
FirewallRuleTO(com.cloud.agent.api.to.FirewallRuleTO)
SetFirewallRulesCommand(com.cloud.agent.api.routing.SetFirewallRulesCommand)
FirewallRuleVO(com.cloud.network.rules.FirewallRuleVO)
Test(org.junit.Test)
Example 12 with SetFirewallRulesCommand
use of com.cloud.agent.api.routing.SetFirewallRulesCommand in project cloudstack by apache.
the class SimulatorManagerImpl method simulate.
@DB
@Override
public Answer simulate(final Command cmd, final String hostGuid) {
Answer answer = null;
Exception exception = null;
TransactionLegacy txn = TransactionLegacy.open(TransactionLegacy.SIMULATOR_DB);
try {
final MockHost host = _mockHost.findByGuid(hostGuid);
String cmdName = cmd.toString();
final int index = cmdName.lastIndexOf(".");
if (index != -1) {
cmdName = cmdName.substring(index + 1);
}
final SimulatorInfo info = new SimulatorInfo();
info.setHostUuid(hostGuid);
final MockConfigurationVO config = _mockConfigDao.findByNameBottomUP(host.getDataCenterId(), host.getPodId(), host.getClusterId(), host.getId(), cmdName);
if (config != null && (config.getCount() == null || config.getCount().intValue() > 0)) {
final Map<String, String> configParameters = config.getParameters();
for (final Map.Entry<String, String> entry : configParameters.entrySet()) {
if (entry.getKey().equalsIgnoreCase("enabled")) {
info.setEnabled(Boolean.parseBoolean(entry.getValue()));
} else if (entry.getKey().equalsIgnoreCase("timeout")) {
try {
info.setTimeout(Integer.valueOf(entry.getValue()));
} catch (final NumberFormatException e) {
s_logger.debug("invalid timeout parameter: " + e.toString());
}
}
if (entry.getKey().equalsIgnoreCase("wait")) {
try {
final int wait = Integer.valueOf(entry.getValue());
Thread.sleep(wait);
} catch (final NumberFormatException e) {
s_logger.debug("invalid wait parameter: " + e.toString());
} catch (final InterruptedException e) {
s_logger.debug("thread is interrupted: " + e.toString());
}
}
if (entry.getKey().equalsIgnoreCase("result")) {
final String value = entry.getValue();
if (value.equalsIgnoreCase("fail")) {
answer = new Answer(cmd, false, "Simulated failure");
} else if (value.equalsIgnoreCase("fault")) {
exception = new Exception("Simulated fault");
}
}
}
if (exception != null) {
throw exception;
}
if (answer == null) {
final String message = config.getJsonResponse();
if (message != null) {
// json response looks like {"<Type>":....}
final String objectType = message.split(":")[0].substring(2).replace("\"", "");
final String objectData = message.substring(message.indexOf(':') + 1, message.length() - 1);
if (objectType != null) {
Class<?> clz = null;
try {
clz = Class.forName(objectType);
} catch (final ClassNotFoundException e) {
}
if (clz != null) {
final StringReader reader = new StringReader(objectData);
final JsonReader jsonReader = new JsonReader(reader);
jsonReader.setLenient(true);
answer = (Answer) s_gson.fromJson(jsonReader, clz);
}
}
}
}
}
if (answer == null) {
if (cmd instanceof GetHostStatsCommand) {
answer = _mockAgentMgr.getHostStatistic((GetHostStatsCommand) cmd);
} else if (cmd instanceof CheckHealthCommand) {
answer = _mockAgentMgr.checkHealth((CheckHealthCommand) cmd);
} else if (cmd instanceof PingTestCommand) {
answer = _mockAgentMgr.pingTest((PingTestCommand) cmd);
} else if (cmd instanceof PrepareForMigrationCommand) {
answer = _mockVmMgr.prepareForMigrate((PrepareForMigrationCommand) cmd);
} else if (cmd instanceof MigrateCommand) {
answer = _mockVmMgr.migrate((MigrateCommand) cmd, info);
} else if (cmd instanceof StartCommand) {
answer = _mockVmMgr.startVM((StartCommand) cmd, info);
} else if (cmd instanceof CheckSshCommand) {
answer = _mockVmMgr.checkSshCommand((CheckSshCommand) cmd);
} else if (cmd instanceof CheckVirtualMachineCommand) {
answer = _mockVmMgr.checkVmState((CheckVirtualMachineCommand) cmd);
} else if (cmd instanceof SetStaticNatRulesCommand) {
answer = _mockNetworkMgr.SetStaticNatRules((SetStaticNatRulesCommand) cmd);
} else if (cmd instanceof SetFirewallRulesCommand) {
answer = _mockNetworkMgr.SetFirewallRules((SetFirewallRulesCommand) cmd);
} else if (cmd instanceof SetPortForwardingRulesCommand) {
answer = _mockNetworkMgr.SetPortForwardingRules((SetPortForwardingRulesCommand) cmd);
} else if (cmd instanceof NetworkUsageCommand) {
answer = _mockNetworkMgr.getNetworkUsage((NetworkUsageCommand) cmd);
} else if (cmd instanceof IpAssocCommand) {
answer = _mockNetworkMgr.IpAssoc((IpAssocCommand) cmd);
} else if (cmd instanceof LoadBalancerConfigCommand) {
answer = _mockNetworkMgr.LoadBalancerConfig((LoadBalancerConfigCommand) cmd);
} else if (cmd instanceof DhcpEntryCommand) {
answer = _mockNetworkMgr.AddDhcpEntry((DhcpEntryCommand) cmd);
} else if (cmd instanceof VmDataCommand) {
answer = _mockVmMgr.setVmData((VmDataCommand) cmd);
} else if (cmd instanceof CleanupNetworkRulesCmd) {
answer = _mockVmMgr.cleanupNetworkRules((CleanupNetworkRulesCmd) cmd, info);
} else if (cmd instanceof CheckNetworkCommand) {
answer = _mockAgentMgr.checkNetworkCommand((CheckNetworkCommand) cmd);
} else if (cmd instanceof StopCommand) {
answer = _mockVmMgr.stopVM((StopCommand) cmd);
} else if (cmd instanceof RebootCommand) {
answer = _mockVmMgr.rebootVM((RebootCommand) cmd);
} else if (cmd instanceof GetVncPortCommand) {
answer = _mockVmMgr.getVncPort((GetVncPortCommand) cmd);
} else if (cmd instanceof CheckConsoleProxyLoadCommand) {
answer = _mockVmMgr.checkConsoleProxyLoad((CheckConsoleProxyLoadCommand) cmd);
} else if (cmd instanceof WatchConsoleProxyLoadCommand) {
answer = _mockVmMgr.watchConsoleProxyLoad((WatchConsoleProxyLoadCommand) cmd);
} else if (cmd instanceof SecurityGroupRulesCmd) {
answer = _mockVmMgr.addSecurityGroupRules((SecurityGroupRulesCmd) cmd, info);
} else if (cmd instanceof SavePasswordCommand) {
answer = _mockVmMgr.savePassword((SavePasswordCommand) cmd);
} else if (cmd instanceof PrimaryStorageDownloadCommand) {
answer = _mockStorageMgr.primaryStorageDownload((PrimaryStorageDownloadCommand) cmd);
} else if (cmd instanceof CreateCommand) {
answer = _mockStorageMgr.createVolume((CreateCommand) cmd);
} else if (cmd instanceof AttachIsoCommand) {
answer = _mockStorageMgr.AttachIso((AttachIsoCommand) cmd);
} else if (cmd instanceof DeleteStoragePoolCommand) {
answer = _mockStorageMgr.DeleteStoragePool((DeleteStoragePoolCommand) cmd);
} else if (cmd instanceof ModifyStoragePoolCommand) {
answer = _mockStorageMgr.ModifyStoragePool((ModifyStoragePoolCommand) cmd);
} else if (cmd instanceof CreateStoragePoolCommand) {
answer = _mockStorageMgr.CreateStoragePool((CreateStoragePoolCommand) cmd);
} else if (cmd instanceof SecStorageSetupCommand) {
answer = _mockStorageMgr.SecStorageSetup((SecStorageSetupCommand) cmd);
} else if (cmd instanceof ListTemplateCommand) {
answer = _mockStorageMgr.ListTemplates((ListTemplateCommand) cmd);
} else if (cmd instanceof ListVolumeCommand) {
answer = _mockStorageMgr.ListVolumes((ListVolumeCommand) cmd);
} else if (cmd instanceof DestroyCommand) {
answer = _mockStorageMgr.Destroy((DestroyCommand) cmd);
} else if (cmd instanceof DownloadProgressCommand) {
answer = _mockStorageMgr.DownloadProcess((DownloadProgressCommand) cmd);
} else if (cmd instanceof DownloadCommand) {
answer = _mockStorageMgr.Download((DownloadCommand) cmd);
} else if (cmd instanceof GetStorageStatsCommand) {
answer = _mockStorageMgr.GetStorageStats((GetStorageStatsCommand) cmd);
} else if (cmd instanceof ManageSnapshotCommand) {
answer = _mockStorageMgr.ManageSnapshot((ManageSnapshotCommand) cmd);
} else if (cmd instanceof BackupSnapshotCommand) {
answer = _mockStorageMgr.BackupSnapshot((BackupSnapshotCommand) cmd, info);
} else if (cmd instanceof CreateVolumeFromSnapshotCommand) {
answer = _mockStorageMgr.CreateVolumeFromSnapshot((CreateVolumeFromSnapshotCommand) cmd);
} else if (cmd instanceof DeleteCommand) {
answer = _mockStorageMgr.Delete((DeleteCommand) cmd);
} else if (cmd instanceof SecStorageVMSetupCommand) {
answer = _mockStorageMgr.SecStorageVMSetup((SecStorageVMSetupCommand) cmd);
} else if (cmd instanceof CreatePrivateTemplateFromSnapshotCommand) {
answer = _mockStorageMgr.CreatePrivateTemplateFromSnapshot((CreatePrivateTemplateFromSnapshotCommand) cmd);
} else if (cmd instanceof ComputeChecksumCommand) {
answer = _mockStorageMgr.ComputeChecksum((ComputeChecksumCommand) cmd);
} else if (cmd instanceof CreatePrivateTemplateFromVolumeCommand) {
answer = _mockStorageMgr.CreatePrivateTemplateFromVolume((CreatePrivateTemplateFromVolumeCommand) cmd);
} else if (cmd instanceof UploadStatusCommand) {
answer = _mockStorageMgr.getUploadStatus((UploadStatusCommand) cmd);
} else if (cmd instanceof MaintainCommand) {
answer = _mockAgentMgr.maintain((MaintainCommand) cmd);
} else if (cmd instanceof GetVmStatsCommand) {
answer = _mockVmMgr.getVmStats((GetVmStatsCommand) cmd);
} else if (cmd instanceof CheckRouterCommand) {
answer = _mockVmMgr.checkRouter((CheckRouterCommand) cmd);
} else if (cmd instanceof GetDomRVersionCmd) {
answer = _mockVmMgr.getDomRVersion((GetDomRVersionCmd) cmd);
} else if (cmd instanceof CopyVolumeCommand) {
answer = _mockStorageMgr.CopyVolume((CopyVolumeCommand) cmd);
} else if (cmd instanceof PlugNicCommand) {
answer = _mockNetworkMgr.plugNic((PlugNicCommand) cmd);
} else if (cmd instanceof UnPlugNicCommand) {
answer = _mockNetworkMgr.unplugNic((UnPlugNicCommand) cmd);
} else if (cmd instanceof IpAssocVpcCommand) {
answer = _mockNetworkMgr.ipAssoc((IpAssocVpcCommand) cmd);
} else if (cmd instanceof SetSourceNatCommand) {
answer = _mockNetworkMgr.setSourceNat((SetSourceNatCommand) cmd);
} else if (cmd instanceof SetNetworkACLCommand) {
answer = _mockNetworkMgr.setNetworkAcl((SetNetworkACLCommand) cmd);
} else if (cmd instanceof SetupGuestNetworkCommand) {
answer = _mockNetworkMgr.setUpGuestNetwork((SetupGuestNetworkCommand) cmd);
} else if (cmd instanceof SetPortForwardingRulesVpcCommand) {
answer = _mockNetworkMgr.setVpcPortForwards((SetPortForwardingRulesVpcCommand) cmd);
} else if (cmd instanceof SetStaticNatRulesCommand) {
answer = _mockNetworkMgr.setVPCStaticNatRules((SetStaticNatRulesCommand) cmd);
} else if (cmd instanceof SetStaticRouteCommand) {
answer = _mockNetworkMgr.setStaticRoute((SetStaticRouteCommand) cmd);
} else if (cmd instanceof Site2SiteVpnCfgCommand) {
answer = _mockNetworkMgr.siteToSiteVpn((Site2SiteVpnCfgCommand) cmd);
} else if (cmd instanceof CheckS2SVpnConnectionsCommand) {
answer = _mockNetworkMgr.checkSiteToSiteVpnConnection((CheckS2SVpnConnectionsCommand) cmd);
} else if (cmd instanceof CreateVMSnapshotCommand) {
answer = _mockVmMgr.createVmSnapshot((CreateVMSnapshotCommand) cmd);
} else if (cmd instanceof DeleteVMSnapshotCommand) {
answer = _mockVmMgr.deleteVmSnapshot((DeleteVMSnapshotCommand) cmd);
} else if (cmd instanceof RevertToVMSnapshotCommand) {
answer = _mockVmMgr.revertVmSnapshot((RevertToVMSnapshotCommand) cmd);
} else if (cmd instanceof NetworkRulesVmSecondaryIpCommand) {
answer = _mockVmMgr.plugSecondaryIp((NetworkRulesVmSecondaryIpCommand) cmd);
} else if (cmd instanceof ScaleVmCommand) {
answer = _mockVmMgr.scaleVm((ScaleVmCommand) cmd);
} else if (cmd instanceof PvlanSetupCommand) {
answer = _mockNetworkMgr.setupPVLAN((PvlanSetupCommand) cmd);
} else if (cmd instanceof StorageSubSystemCommand) {
answer = storageHandler.handleStorageCommands((StorageSubSystemCommand) cmd);
} else if (cmd instanceof FenceCommand) {
answer = _mockVmMgr.fence((FenceCommand) cmd);
} else if (cmd instanceof GetRouterAlertsCommand || cmd instanceof VpnUsersCfgCommand || cmd instanceof RemoteAccessVpnCfgCommand || cmd instanceof SetMonitorServiceCommand || cmd instanceof AggregationControlCommand || cmd instanceof SecStorageFirewallCfgCommand) {
answer = new Answer(cmd);
} else {
s_logger.error("Simulator does not implement command of type " + cmd.toString());
answer = Answer.createUnsupportedCommandAnswer(cmd);
}
}
if (config != null && config.getCount() != null && config.getCount().intValue() > 0) {
if (answer != null) {
config.setCount(config.getCount().intValue() - 1);
_mockConfigDao.update(config.getId(), config);
}
}
return answer;
} catch (final Exception e) {
s_logger.error("Failed execute cmd: ", e);
txn.rollback();
return new Answer(cmd, false, e.toString());
} finally {
txn.close();
txn = TransactionLegacy.open(TransactionLegacy.CLOUD_DB);
txn.close();
}
}
Also used :
CheckRouterCommand(com.cloud.agent.api.CheckRouterCommand)
VpnUsersCfgCommand(com.cloud.agent.api.routing.VpnUsersCfgCommand)
GetRouterAlertsCommand(com.cloud.agent.api.routing.GetRouterAlertsCommand)
Site2SiteVpnCfgCommand(com.cloud.agent.api.routing.Site2SiteVpnCfgCommand)
GetDomRVersionCmd(com.cloud.agent.api.GetDomRVersionCmd)
DhcpEntryCommand(com.cloud.agent.api.routing.DhcpEntryCommand)
VmDataCommand(com.cloud.agent.api.routing.VmDataCommand)
DeleteStoragePoolCommand(com.cloud.agent.api.DeleteStoragePoolCommand)
ListTemplateCommand(com.cloud.agent.api.storage.ListTemplateCommand)
ManageSnapshotCommand(com.cloud.agent.api.ManageSnapshotCommand)
ComputeChecksumCommand(com.cloud.agent.api.ComputeChecksumCommand)
MigrateCommand(com.cloud.agent.api.MigrateCommand)
UnPlugNicCommand(com.cloud.agent.api.UnPlugNicCommand)
DeleteCommand(org.apache.cloudstack.storage.command.DeleteCommand)
UploadStatusCommand(org.apache.cloudstack.storage.command.UploadStatusCommand)
SetMonitorServiceCommand(com.cloud.agent.api.routing.SetMonitorServiceCommand)
SetPortForwardingRulesCommand(com.cloud.agent.api.routing.SetPortForwardingRulesCommand)
CreateVolumeFromSnapshotCommand(com.cloud.agent.api.CreateVolumeFromSnapshotCommand)
PvlanSetupCommand(com.cloud.agent.api.PvlanSetupCommand)
CheckNetworkCommand(com.cloud.agent.api.CheckNetworkCommand)
CheckS2SVpnConnectionsCommand(com.cloud.agent.api.CheckS2SVpnConnectionsCommand)
ScaleVmCommand(com.cloud.agent.api.ScaleVmCommand)
PingTestCommand(com.cloud.agent.api.PingTestCommand)
BackupSnapshotCommand(com.cloud.agent.api.BackupSnapshotCommand)
SetStaticNatRulesCommand(com.cloud.agent.api.routing.SetStaticNatRulesCommand)
SecurityGroupRulesCmd(com.cloud.agent.api.SecurityGroupRulesCmd)
CreateCommand(com.cloud.agent.api.storage.CreateCommand)
SetStaticRouteCommand(com.cloud.agent.api.routing.SetStaticRouteCommand)
DestroyCommand(com.cloud.agent.api.storage.DestroyCommand)
SecStorageFirewallCfgCommand(com.cloud.agent.api.SecStorageFirewallCfgCommand)
SecStorageSetupCommand(com.cloud.agent.api.SecStorageSetupCommand)
NetworkUsageCommand(com.cloud.agent.api.NetworkUsageCommand)
IpAssocVpcCommand(com.cloud.agent.api.routing.IpAssocVpcCommand)
SetFirewallRulesCommand(com.cloud.agent.api.routing.SetFirewallRulesCommand)
AttachIsoCommand(com.cloud.agent.api.AttachIsoCommand)
CleanupNetworkRulesCmd(com.cloud.agent.api.CleanupNetworkRulesCmd)
GetVmStatsCommand(com.cloud.agent.api.GetVmStatsCommand)
TransactionLegacy(com.cloud.utils.db.TransactionLegacy)
StopCommand(com.cloud.agent.api.StopCommand)
DeleteVMSnapshotCommand(com.cloud.agent.api.DeleteVMSnapshotCommand)
StorageSubSystemCommand(org.apache.cloudstack.storage.command.StorageSubSystemCommand)
PrepareForMigrationCommand(com.cloud.agent.api.PrepareForMigrationCommand)
SecStorageVMSetupCommand(com.cloud.agent.api.SecStorageVMSetupCommand)
Map(java.util.Map)
HashMap(java.util.HashMap)
SetupGuestNetworkCommand(com.cloud.agent.api.SetupGuestNetworkCommand)
MockConfigurationVO(com.cloud.simulator.MockConfigurationVO)
CheckSshCommand(com.cloud.agent.api.check.CheckSshCommand)
RebootCommand(com.cloud.agent.api.RebootCommand)
StartCommand(com.cloud.agent.api.StartCommand)
RevertToVMSnapshotCommand(com.cloud.agent.api.RevertToVMSnapshotCommand)
CheckConsoleProxyLoadCommand(com.cloud.agent.api.proxy.CheckConsoleProxyLoadCommand)
SavePasswordCommand(com.cloud.agent.api.routing.SavePasswordCommand)
PrimaryStorageDownloadCommand(com.cloud.agent.api.storage.PrimaryStorageDownloadCommand)
PrimaryStorageDownloadCommand(com.cloud.agent.api.storage.PrimaryStorageDownloadCommand)
DownloadCommand(org.apache.cloudstack.storage.command.DownloadCommand)
NetworkRulesVmSecondaryIpCommand(com.cloud.agent.api.NetworkRulesVmSecondaryIpCommand)
CopyVolumeCommand(com.cloud.agent.api.storage.CopyVolumeCommand)
WatchConsoleProxyLoadCommand(com.cloud.agent.api.proxy.WatchConsoleProxyLoadCommand)
SetSourceNatCommand(com.cloud.agent.api.routing.SetSourceNatCommand)
GetHostStatsCommand(com.cloud.agent.api.GetHostStatsCommand)
CreateVMSnapshotCommand(com.cloud.agent.api.CreateVMSnapshotCommand)
AggregationControlCommand(com.cloud.agent.api.routing.AggregationControlCommand)
StringReader(java.io.StringReader)
IpAssocCommand(com.cloud.agent.api.routing.IpAssocCommand)
JsonReader(com.google.gson.stream.JsonReader)
CreatePrivateTemplateFromSnapshotCommand(com.cloud.agent.api.CreatePrivateTemplateFromSnapshotCommand)
PlugNicCommand(com.cloud.agent.api.PlugNicCommand)
UnPlugNicCommand(com.cloud.agent.api.UnPlugNicCommand)
LoadBalancerConfigCommand(com.cloud.agent.api.routing.LoadBalancerConfigCommand)
MaintainCommand(com.cloud.agent.api.MaintainCommand)
SetNetworkACLCommand(com.cloud.agent.api.routing.SetNetworkACLCommand)
CloudRuntimeException(com.cloud.utils.exception.CloudRuntimeException)
ConfigurationException(javax.naming.ConfigurationException)
ModifyStoragePoolCommand(com.cloud.agent.api.ModifyStoragePoolCommand)
GetStorageStatsCommand(com.cloud.agent.api.GetStorageStatsCommand)
DownloadProgressCommand(org.apache.cloudstack.storage.command.DownloadProgressCommand)
Answer(com.cloud.agent.api.Answer)
ListVolumeCommand(com.cloud.agent.api.storage.ListVolumeCommand)
FenceCommand(com.cloud.agent.api.FenceCommand)
GetVncPortCommand(com.cloud.agent.api.GetVncPortCommand)
MockHost(com.cloud.simulator.MockHost)
SetPortForwardingRulesVpcCommand(com.cloud.agent.api.routing.SetPortForwardingRulesVpcCommand)
RemoteAccessVpnCfgCommand(com.cloud.agent.api.routing.RemoteAccessVpnCfgCommand)
CreatePrivateTemplateFromVolumeCommand(com.cloud.agent.api.CreatePrivateTemplateFromVolumeCommand)
CheckVirtualMachineCommand(com.cloud.agent.api.CheckVirtualMachineCommand)
CreateStoragePoolCommand(com.cloud.agent.api.CreateStoragePoolCommand)
CheckHealthCommand(com.cloud.agent.api.CheckHealthCommand)
DB(com.cloud.utils.db.DB)
Example 13 with SetFirewallRulesCommand
use of com.cloud.agent.api.routing.SetFirewallRulesCommand in project cloudstack by apache.
the class CommandSetupHelper method createApplyFirewallRulesCommands.
public void createApplyFirewallRulesCommands(final List<? extends FirewallRule> rules, final VirtualRouter router, final Commands cmds, final long guestNetworkId) {
final List<FirewallRuleTO> rulesTO = new ArrayList<FirewallRuleTO>();
String systemRule = null;
Boolean defaultEgressPolicy = false;
if (rules != null) {
if (rules.size() > 0) {
if (rules.get(0).getTrafficType() == FirewallRule.TrafficType.Egress && rules.get(0).getType() == FirewallRule.FirewallRuleType.System) {
systemRule = String.valueOf(FirewallRule.FirewallRuleType.System);
}
}
for (final FirewallRule rule : rules) {
_rulesDao.loadSourceCidrs((FirewallRuleVO) rule);
final FirewallRule.TrafficType traffictype = rule.getTrafficType();
if (traffictype == FirewallRule.TrafficType.Ingress) {
final IpAddress sourceIp = _networkModel.getIp(rule.getSourceIpAddressId());
final FirewallRuleTO ruleTO = new FirewallRuleTO(rule, null, sourceIp.getAddress().addr(), Purpose.Firewall, traffictype);
rulesTO.add(ruleTO);
} else if (rule.getTrafficType() == FirewallRule.TrafficType.Egress) {
final NetworkVO network = _networkDao.findById(guestNetworkId);
final NetworkOfferingVO offering = _networkOfferingDao.findById(network.getNetworkOfferingId());
defaultEgressPolicy = offering.getEgressDefaultPolicy();
assert rule.getSourceIpAddressId() == null : "ipAddressId should be null for egress firewall rule. ";
final FirewallRuleTO ruleTO = new FirewallRuleTO(rule, null, "", Purpose.Firewall, traffictype, defaultEgressPolicy);
rulesTO.add(ruleTO);
}
}
}
final SetFirewallRulesCommand cmd = new SetFirewallRulesCommand(rulesTO);
cmd.setAccessDetail(NetworkElementCommand.ROUTER_IP, _routerControlHelper.getRouterControlIp(router.getId()));
cmd.setAccessDetail(NetworkElementCommand.ROUTER_GUEST_IP, _routerControlHelper.getRouterIpInNetwork(guestNetworkId, router.getId()));
cmd.setAccessDetail(NetworkElementCommand.ROUTER_NAME, router.getInstanceName());
final DataCenterVO dcVo = _dcDao.findById(router.getDataCenterId());
cmd.setAccessDetail(NetworkElementCommand.ZONE_NETWORK_TYPE, dcVo.getNetworkType().toString());
if (systemRule != null) {
cmd.setAccessDetail(NetworkElementCommand.FIREWALL_EGRESS_DEFAULT, systemRule);
} else {
cmd.setAccessDetail(NetworkElementCommand.FIREWALL_EGRESS_DEFAULT, String.valueOf(defaultEgressPolicy));
}
cmds.addCommand(cmd);
}
Also used :
DataCenterVO(com.cloud.dc.DataCenterVO)
NetworkVO(com.cloud.network.dao.NetworkVO)
ArrayList(java.util.ArrayList)
NetworkOfferingVO(com.cloud.offerings.NetworkOfferingVO)
PrivateIpAddress(com.cloud.network.vpc.PrivateIpAddress)
IpAddress(com.cloud.network.IpAddress)
PublicIpAddress(com.cloud.network.PublicIpAddress)
FirewallRuleTO(com.cloud.agent.api.to.FirewallRuleTO)
FirewallRule(com.cloud.network.rules.FirewallRule)
SetFirewallRulesCommand(com.cloud.agent.api.routing.SetFirewallRulesCommand)
Aggregations
SetFirewallRulesCommand (com.cloud.agent.api.routing.SetFirewallRulesCommand)13
FirewallRuleTO (com.cloud.agent.api.to.FirewallRuleTO)10
ArrayList (java.util.ArrayList)10
Answer (com.cloud.agent.api.Answer)9
IpAssocAnswer (com.cloud.agent.api.routing.IpAssocAnswer)5
Test (org.junit.Test)5
CheckRouterCommand (com.cloud.agent.api.CheckRouterCommand)2
CheckS2SVpnConnectionsCommand (com.cloud.agent.api.CheckS2SVpnConnectionsCommand)2
GetDomRVersionCmd (com.cloud.agent.api.GetDomRVersionCmd)2
NetworkUsageCommand (com.cloud.agent.api.NetworkUsageCommand)2
PingTestCommand (com.cloud.agent.api.PingTestCommand)2
PlugNicCommand (com.cloud.agent.api.PlugNicCommand)2
IpAddress (com.cloud.network.IpAddress)2
PublicIpAddress (com.cloud.network.PublicIpAddress)2
FirewallRule (com.cloud.network.rules.FirewallRule)2
AttachIsoCommand (com.cloud.agent.api.AttachIsoCommand)1
BackupSnapshotCommand (com.cloud.agent.api.BackupSnapshotCommand)1
CheckHealthCommand (com.cloud.agent.api.CheckHealthCommand)1
CheckNetworkCommand (com.cloud.agent.api.CheckNetworkCommand)1
CheckRouterAnswer (com.cloud.agent.api.CheckRouterAnswer)1
