Re: [ovirt-users] Hosts firewall custom setup
On 02/27/2018 11:29 AM, Nicolas Ecarnot wrote:
Le 26/02/2018 à 15:00, Yedidyah Bar David a écrit :
>> But how do we add custom rules in case of firewalld type?
>
> Please see: https://ovirt.org/blog/2017/12/host-deploy-customization/
Hello Didi and al,
- I followed the advices found in this blog page, I created the exact
same filename with the adequate content.
- I've setup the cluster type to firewalld
- I restarted ovirt-engine
- I reinstalled a host
I see no usage of this Ansible yml file.
I see the creation of an ansible deploy log file for my host, and I see
the usual firewall ports being opened, but I see nowhere any usage of
the /etc/ovirt-engine/ansible/ovirt-host-deploy-post-tasks.yml file.
- I added the debug msg part in the ansible recipe, but to no avail.
- Huge grepping through the /var/log of the engine shows no calls of
this script.
Thus, I see no effect on ports of the host's firewalld config.
What should I look at now?
It looks like you hit the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=1549163
It will be fixed in 4.2.2 release.
I believe you can meanwhile remove line:
- oVirt-metrics
from file:
/usr/share/ovirt-engine/playbooks/roles/ovirt-host-deploy/meta/main.yml
Thank you.