Example 1 with PortForwardingRule
use of com.cloud.network.rules.PortForwardingRule in project CloudStack-archive by CloudStack-extras.
the class CreatePortForwardingRuleCmd method execute.
@Override
public void execute() throws ResourceUnavailableException {
UserContext callerContext = UserContext.current();
boolean success = true;
PortForwardingRule rule = null;
try {
UserContext.current().setEventDetails("Rule Id: " + getEntityId());
if (getOpenFirewall()) {
success = success && _firewallService.applyFirewallRules(ipAddressId, callerContext.getCaller());
}
success = success && _rulesService.applyPortForwardingRules(ipAddressId, callerContext.getCaller());
// State is different after the rule is applied, so get new object here
rule = _entityMgr.findById(PortForwardingRule.class, getEntityId());
FirewallRuleResponse fwResponse = new FirewallRuleResponse();
if (rule != null) {
fwResponse = _responseGenerator.createPortForwardingRuleResponse(rule);
setResponseObject(fwResponse);
}
fwResponse.setResponseName(getCommandName());
} finally {
if (!success || rule == null) {
if (getOpenFirewall()) {
_firewallService.revokeRelatedFirewallRule(getEntityId(), true);
}
_rulesService.revokePortForwardingRule(getEntityId(), true);
throw new ServerApiException(BaseCmd.INTERNAL_ERROR, "Failed to apply port forwarding rule");
}
}
}
Also used :
ServerApiException(com.cloud.api.ServerApiException)
UserContext(com.cloud.user.UserContext)
PortForwardingRule(com.cloud.network.rules.PortForwardingRule)
FirewallRuleResponse(com.cloud.api.response.FirewallRuleResponse)
Example 2 with PortForwardingRule
use of com.cloud.network.rules.PortForwardingRule in project cloudstack by apache.
the class CreatePortForwardingRuleCmd method execute.
@Override
public void execute() throws ResourceUnavailableException {
CallContext callerContext = CallContext.current();
boolean success = true;
PortForwardingRule rule = null;
try {
CallContext.current().setEventDetails("Rule Id: " + getEntityId());
if (getOpenFirewall()) {
success = success && _firewallService.applyIngressFirewallRules(ipAddressId, callerContext.getCallingAccount());
}
success = success && _rulesService.applyPortForwardingRules(ipAddressId, callerContext.getCallingAccount());
// State is different after the rule is applied, so get new object here
rule = _entityMgr.findById(PortForwardingRule.class, getEntityId());
FirewallRuleResponse fwResponse = new FirewallRuleResponse();
if (rule != null) {
fwResponse = _responseGenerator.createPortForwardingRuleResponse(rule);
setResponseObject(fwResponse);
}
fwResponse.setResponseName(getCommandName());
} finally {
if (!success || rule == null) {
if (getOpenFirewall()) {
_firewallService.revokeRelatedFirewallRule(getEntityId(), true);
}
try {
_rulesService.revokePortForwardingRule(getEntityId(), true);
} catch (Exception ex) {
//Ignore e.g. failed to apply rules to device error
}
throw new ServerApiException(ApiErrorCode.INTERNAL_ERROR, "Failed to apply port forwarding rule");
}
}
}
Also used :
ServerApiException(org.apache.cloudstack.api.ServerApiException)
CallContext(org.apache.cloudstack.context.CallContext)
PortForwardingRule(com.cloud.network.rules.PortForwardingRule)
FirewallRuleResponse(org.apache.cloudstack.api.response.FirewallRuleResponse)
ServerApiException(org.apache.cloudstack.api.ServerApiException)
ResourceUnavailableException(com.cloud.exception.ResourceUnavailableException)
InvalidParameterValueException(com.cloud.exception.InvalidParameterValueException)
NetworkRuleConflictException(com.cloud.exception.NetworkRuleConflictException)
Example 3 with PortForwardingRule
use of com.cloud.network.rules.PortForwardingRule in project cloudstack by apache.
the class UpdatePortForwardingRuleCmd method execute.
@Override
public void execute() {
PortForwardingRule rule = _rulesService.updatePortForwardingRule(id, getPrivatePort(), getVirtualMachineId(), getVmGuestIp(), getCustomId(), getDisplay());
FirewallRuleResponse fwResponse = new FirewallRuleResponse();
if (rule != null) {
fwResponse = _responseGenerator.createPortForwardingRuleResponse(rule);
setResponseObject(fwResponse);
}
fwResponse.setResponseName(getCommandName());
}
Also used :
PortForwardingRule(com.cloud.network.rules.PortForwardingRule)
FirewallRuleResponse(org.apache.cloudstack.api.response.FirewallRuleResponse)
Example 4 with PortForwardingRule
use of com.cloud.network.rules.PortForwardingRule in project cloudstack by apache.
the class CiscoVnmcElement method applyPFRules.
@Override
public boolean applyPFRules(Network network, List<PortForwardingRule> rules) throws ResourceUnavailableException {
if (!_networkModel.isProviderSupportServiceInNetwork(network.getId(), Service.PortForwarding, Provider.CiscoVnmc)) {
s_logger.error("Port forwarding service is not provided by Cisco Vnmc device on network " + network.getName());
return false;
}
// Find VNMC host for physical network
List<CiscoVnmcControllerVO> devices = _ciscoVnmcDao.listByPhysicalNetwork(network.getPhysicalNetworkId());
if (devices.isEmpty()) {
s_logger.error("No Cisco Vnmc device on network " + network.getName());
return true;
}
// Find if ASA 1000v is associated with network
NetworkAsa1000vMapVO asaForNetwork = _networkAsa1000vMapDao.findByNetworkId(network.getId());
if (asaForNetwork == null) {
s_logger.debug("Cisco ASA 1000v device is not associated with network " + network.getName());
return true;
}
if (network.getState() == Network.State.Allocated) {
s_logger.debug("External firewall was asked to apply port forwarding rules for network with ID " + network.getId() + "; this network is not implemented. Skipping backend commands.");
return true;
}
CiscoVnmcControllerVO ciscoVnmcDevice = devices.get(0);
HostVO ciscoVnmcHost = _hostDao.findById(ciscoVnmcDevice.getHostId());
List<PortForwardingRuleTO> rulesTO = new ArrayList<PortForwardingRuleTO>();
for (PortForwardingRule rule : rules) {
IpAddress sourceIp = _networkModel.getIp(rule.getSourceIpAddressId());
Vlan vlan = _vlanDao.findById(sourceIp.getVlanId());
PortForwardingRuleTO ruleTO = new PortForwardingRuleTO(rule, vlan.getVlanTag(), sourceIp.getAddress().addr());
rulesTO.add(ruleTO);
}
if (!rulesTO.isEmpty()) {
SetPortForwardingRulesCommand cmd = new SetPortForwardingRulesCommand(rulesTO);
cmd.setContextParam(NetworkElementCommand.GUEST_VLAN_TAG, BroadcastDomainType.getValue(network.getBroadcastUri()));
cmd.setContextParam(NetworkElementCommand.GUEST_NETWORK_CIDR, network.getCidr());
Answer answer = _agentMgr.easySend(ciscoVnmcHost.getId(), cmd);
if (answer == null || !answer.getResult()) {
String details = (answer != null) ? answer.getDetails() : "details unavailable";
String msg = "Unable to apply port forwarding rules to Cisco ASA 1000v appliance due to: " + details + ".";
s_logger.error(msg);
throw new ResourceUnavailableException(msg, DataCenter.class, network.getDataCenterId());
}
}
return true;
}
Also used :
PortForwardingRuleTO(com.cloud.agent.api.to.PortForwardingRuleTO)
ArrayList(java.util.ArrayList)
Vlan(com.cloud.dc.Vlan)
PortForwardingRule(com.cloud.network.rules.PortForwardingRule)
HostVO(com.cloud.host.HostVO)
Answer(com.cloud.agent.api.Answer)
SetPortForwardingRulesCommand(com.cloud.agent.api.routing.SetPortForwardingRulesCommand)
NetworkAsa1000vMapVO(com.cloud.network.cisco.NetworkAsa1000vMapVO)
ResourceUnavailableException(com.cloud.exception.ResourceUnavailableException)
CiscoVnmcControllerVO(com.cloud.network.cisco.CiscoVnmcControllerVO)
IpAddress(com.cloud.network.IpAddress)
PublicIpAddress(com.cloud.network.PublicIpAddress)
Example 5 with PortForwardingRule
use of com.cloud.network.rules.PortForwardingRule in project cloudstack by apache.
the class CiscoVnmcElementTest method applyPRulesTest.
@Test
public void applyPRulesTest() throws ResourceUnavailableException {
URI uri = URI.create("vlan://123");
Network network = mock(Network.class);
when(network.getId()).thenReturn(1L);
when(network.getBroadcastDomainType()).thenReturn(BroadcastDomainType.Vlan);
when(network.getDataCenterId()).thenReturn(1L);
when(network.getBroadcastUri()).thenReturn(uri);
when(network.getCidr()).thenReturn("1.1.1.0/24");
when(network.getState()).thenReturn(Network.State.Implemented);
Ip ip = mock(Ip.class);
when(ip.addr()).thenReturn("1.2.3.4");
IpAddress ipAddress = mock(IpAddress.class);
when(ipAddress.getAddress()).thenReturn(ip);
when(ipAddress.getVlanId()).thenReturn(1L);
when(_networkModel.getIp(anyLong())).thenReturn(ipAddress);
when(_networkModel.isProviderSupportServiceInNetwork(network.getId(), Service.PortForwarding, Provider.CiscoVnmc)).thenReturn(true);
List<CiscoVnmcControllerVO> devices = new ArrayList<CiscoVnmcControllerVO>();
devices.add(mock(CiscoVnmcControllerVO.class));
when(_ciscoVnmcDao.listByPhysicalNetwork(network.getPhysicalNetworkId())).thenReturn(devices);
when(_networkAsa1000vMapDao.findByNetworkId(network.getId())).thenReturn(mock(NetworkAsa1000vMapVO.class));
HostVO hostVO = mock(HostVO.class);
when(hostVO.getId()).thenReturn(1L);
when(_hostDao.findById(anyLong())).thenReturn(hostVO);
VlanVO vlanVO = mock(VlanVO.class);
when(vlanVO.getVlanTag()).thenReturn(null);
when(_vlanDao.findById(anyLong())).thenReturn(vlanVO);
PortForwardingRule rule = mock(PortForwardingRule.class);
when(rule.getSourceIpAddressId()).thenReturn(1L);
when(rule.getDestinationIpAddress()).thenReturn(ip);
List<PortForwardingRule> rules = new ArrayList<PortForwardingRule>();
rules.add(rule);
Answer answer = mock(Answer.class);
when(answer.getResult()).thenReturn(true);
when(_agentMgr.easySend(anyLong(), any(SetPortForwardingRulesCommand.class))).thenReturn(answer);
assertTrue(_element.applyPFRules(network, rules));
}
Also used :
Ip(com.cloud.utils.net.Ip)
PublicIp(com.cloud.network.addr.PublicIp)
ArrayList(java.util.ArrayList)
URI(java.net.URI)
PortForwardingRule(com.cloud.network.rules.PortForwardingRule)
HostVO(com.cloud.host.HostVO)
Answer(com.cloud.agent.api.Answer)
SetPortForwardingRulesCommand(com.cloud.agent.api.routing.SetPortForwardingRulesCommand)
Network(com.cloud.network.Network)
NetworkAsa1000vMapVO(com.cloud.network.cisco.NetworkAsa1000vMapVO)
IpAddress(com.cloud.network.IpAddress)
CiscoVnmcControllerVO(com.cloud.network.cisco.CiscoVnmcControllerVO)
VlanVO(com.cloud.dc.VlanVO)
Test(org.junit.Test)
Aggregations
PortForwardingRule (com.cloud.network.rules.PortForwardingRule)15
ArrayList (java.util.ArrayList)9
PortForwardingRuleTO (com.cloud.agent.api.to.PortForwardingRuleTO)5
IpAddress (com.cloud.network.IpAddress)5
PublicIpAddress (com.cloud.network.PublicIpAddress)5
HostVO (com.cloud.host.HostVO)4
SetPortForwardingRulesCommand (com.cloud.agent.api.routing.SetPortForwardingRulesCommand)3
Vlan (com.cloud.dc.Vlan)3
InvalidParameterValueException (com.cloud.exception.InvalidParameterValueException)3
NetworkRuleConflictException (com.cloud.exception.NetworkRuleConflictException)3
Network (com.cloud.network.Network)3
Ip (com.cloud.utils.net.Ip)3
FirewallRuleResponse (org.apache.cloudstack.api.response.FirewallRuleResponse)3
Answer (com.cloud.agent.api.Answer)2
ServerApiException (com.cloud.api.ServerApiException)2
FirewallRuleResponse (com.cloud.api.response.FirewallRuleResponse)2
DataCenterVO (com.cloud.dc.DataCenterVO)2
ResourceUnavailableException (com.cloud.exception.ResourceUnavailableException)2
PublicIp (com.cloud.network.addr.PublicIp)2
CiscoVnmcControllerVO (com.cloud.network.cisco.CiscoVnmcControllerVO)2
