----- Original Message -----
From: "Hetz Ben Hamo" <hetz@hetz.biz> To: "users@oVirt.org" <users@ovirt.org> Cc: "Sandro Bonazzola" <sbonazzo@redhat.com>, alonbl@redhat.com Sent: Wednesday, July 17, 2013 4:05:46 PM Subject: bug with ovirt nightlies and engine-setup-2 script
* * Hi,
I installed the all in one plugin and run the engine-setup-2 script. it detects the plugin, and I'm using the iptables option. problem is that it writes the wrong lines in iptables:
-A INPUT -p tcp -m state --state NEW -m tcp --dport 5634-6166 -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 49152-49216 -j ACCEPT
iptables does not accept the minus sign when mentioning port range, so 5634-6166 should be 5634:6166 (I wish it would accept the minus sign, it's a stupid thing that it doesn't).
Confirmed, thanks! Patch is available[1].
So the script failes to start iptables due to these wrong lines, and I'm stuck with oVirt that doesn't work.
You can select no firewall to workaround this.
Log file - enclosed.
Hetz