Hi. I've just converted my standalone ovirt engine from iptables to firewalld.  The configuration of the internal zone includes:

  <service name="ssh"/>   <service name="dhcpv6-client"/>   <service name="http"/>   <service name="https"/>   <service name="postgresql"/>   <service name="ovn-central-firewall-service"/>   <service name="ovirt-provider-ovn"/>   <port protocol="tcp" port="2222"/>   <port protocol="tcp" port="6100"/>   <port protocol="udp" port="7410"/>   <port protocol="tcp" port="54323"/>

I'm wondering why the ovirt ports for 2222, 6100, 7410, and 54323 etc. aren't encapsulated in a service file installed by ovirt?  Is this because I had initially installed iptables?  I suspect the answer is no because on my ovirt hosts (which I also converted to firewalld), I was able to find all the proper service files:

 <service name="ssh"/>   <service name="dhcpv6-client"/>   <service name="cockpit"/>   <service name="libvirt-tls"/>   <service name="snmp"/>   <service name="vdsm"/>   <service name="ovirt-imageio"/>   <service name="ovirt-vmconsole"/>   <service name="ovn-host-firewall-service"/> I'm also wondering whether ovirt will tell me if I go to upgrade any additional ports that need to be added for additional services?

Thanks! Jason.