[CLOUDSTACK-535] Virtual Router DNS is restricted to UDP only - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 4.0.0
Fix Version/s: None
Component/s: Network Controller
Security Level: Public (Anyone can view this level - this is the default.)
Labels:
None

Description

Issue:
When a new router VM is generated and started the initial firewall rules allow only port 53 on UDP. Router VMs should allow port 53 on TCP is well due to longer resolutions can switch to TCP for example cPanel. The cPanel installer will not run if it cannot resolve over TCP.

Workaround:
Login to the router VM and execute:
iptables -A INPUT -i eth0 -p tcp -m tcp --dport 53 -j ACCEPT

Resolution:
I'm not sure where the initial firewall rules are coming from (maybe systemVM ISO?) but there this new rule should be added.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Tamas Monos

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 26/Nov/12 13:17

Updated:: 17/Mar/17 16:23

Resolved:: 17/Mar/17 16:23