<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Apr 2, 2017 at 7:23 PM, Leon Goldberg <span dir="ltr"><<a href="mailto:lgoldber@redhat.com" target="_blank">lgoldber@redhat.com</a>></span> wrote:<br><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr"><div><div>Hey,<br><br></div>We're gathering information regarding the ports we open as part of the firewalld migration research. <br><br>We have most of the current ports covered by either firewalld itself or by 3rd party packages, however some questions remain unanswered:<br><br><br></div><div>IPTablesConfigForVirt:<br><br></div><div>- serial consoles (tcp/2223): Is this required? can't find a single reference to a listening entity. Either way, I couldn't find a relevant service that provides it.<br></div><div><br></div><div><br></div><div>IPTablesConfigForGluster:<br><br></div><div>- Gluster swift (tcp/8080): Doesn't appear in Gluster's firewalld service. Should be added to Gluster's firewalld service?<br></div></div></blockquote><div><br></div><div>This is required when gluster-swift service is running on the hosts. gluster-swift is no longer installed as part of glusterfs-server installation, so this can be removed.<br> <br></div><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr"><div><br></div><div>- tcp/39543 and tcp/55863, appear under "status". Couldn't find a relevant service that provides them. Should be added? (and if so, where?)<br></div></div></blockquote><div><br></div><div>The <a href="https://access.redhat.com/documentation/en-us/red_hat_gluster_storage/3.2/html/installation_guide/port_information" target="_blank">https://access.redhat.com/docu<wbr>mentation/en-us/red_hat_gluste<wbr>r_storage/3.2/html/installatio<wbr>n_guide/port_information</a> mentions these as needed by oVirt. Could be legacy? These can be removed if oVirt no longer uses these ports<br> <br></div><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr"><div><br></div><div>- nlockmgr (tcp/38468, udp/963, tcp/965): tcp/38468 appears in gluster's service. Couldn't find a relevant service that provides the other two. Should be added? (and if so, where?)<br></div></div></blockquote><div><br></div><div>These are needed by NFS LockManager, and needed when gluster nfs access is enabled on gluster volume<br> <br></div><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr"><div><br></div><div>- ctdbd (tcp/4379): Couldn't find a relevant service that provides this. Should be added? (and if so, where?)<br></div></div></blockquote><div><br></div><div>These are needed to access gluster volume using SMB. CTDB service uses this port<br> <br></div><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote"><div dir="ltr"><div><br></div><div><br></div><div>Thanks,<br></div><div>Leon<br></div></div>
</blockquote></div><br></div></div>