[ovirt-users] Re: Info about firewall type and 4.3

Hi Gianluca, I'd like to mention FirewallD support for hosts is oVirt 4.2 feature, so it was available to you even before upgrade to 4.3. Anyway, if you want to switch firewall type of a cluster, then you need to do that in following steps: 1. Change firewall type in the Edit cluster dialog - when done all hosts in the cluster are marked and message "host reinstallation is required" is shown 2. For all hosts in the cluster perform following operations: a. Put host into Maintenance b. Perform Reinstall on the host from webadmin c. Activate the host In the case you have used custom IPTables rules defined using engine-config, then please take a look at blog post [1], which mentions how to define those custom rules using FirewallD: https://www.ovirt.org/blog/2017/12/host-deploy-customization.html The definition of those custom rules needs to be performed even before you start host reinstallation. Please let us know if you have any issues during the process Regards, Martin On Tue, Mar 5, 2019 at 2:10 PM Gianluca Cecchi <gianluca.cecchi(a)gmail.com&gt; wrote: -- Martin Perina Associate Manager, Software Engineering Red Hat Czech s.r.o.