[Kimchi-devel] [PATCH] Firewall: Adding WebSocket port in firewall rules
Christy Perez
christy at linux.vnet.ibm.com
Thu Feb 6 20:59:26 UTC 2014
Reviewed-By: Christy Perez <christy at linux.vnet.ibm.com>
On Thu, 2014-02-06 at 16:22 -0200, Paulo Vital wrote:
> Added port 64667 into src/firewalld.xml to attend Debian/Ubuntu, RHEL7+ and Fedora.
> Also added iptables rules to attend RHEL6 into contrib/kimchi.spec.fedora.in
>
> Signed-off-by: Paulo Vital <pvital at linux.vnet.ibm.com>
> ---
> contrib/kimchi.spec.fedora.in | 2 ++
> src/firewalld.xml | 1 +
> 2 files changed, 3 insertions(+)
>
> diff --git a/contrib/kimchi.spec.fedora.in b/contrib/kimchi.spec.fedora.in
> index 2e36d5c..5140c5e 100644
> --- a/contrib/kimchi.spec.fedora.in
> +++ b/contrib/kimchi.spec.fedora.in
> @@ -104,6 +104,7 @@ firewall-cmd --add-service kimchid >/dev/null 2>&1
> # Add default iptable rules to open 8000 and 8001 port
> iptables -I INPUT -p tcp --dport 8000 -j ACCEPT
> iptables -I INPUT -p tcp --dport 8001 -j ACCEPT
> +iptables -I INPUT -p tcp --dport 64667 -j ACCEPT
> service iptables save >/dev/null 2>&1
> %endif
>
> @@ -118,6 +119,7 @@ if [ $1 -eq 0 ] ; then
> %else
> iptables -D INPUT -p tcp --dport 8000 -j ACCEPT || :
> iptables -D INPUT -p tcp --dport 8001 -j ACCEPT || :
> + iptables -D INPUT -p tcp --dport 64667 -j ACCEPT || :
> %endif
> fi
>
> diff --git a/src/firewalld.xml b/src/firewalld.xml
> index 7472e20..03e1510 100644
> --- a/src/firewalld.xml
> +++ b/src/firewalld.xml
> @@ -4,4 +4,5 @@
> <description>Kimchid is a daemon service for kimchi which is a HTML5 based management tool for KVM. It is designed to make it as easy as possible to get started with KVM and create your first guest.</description>
> <port protocol="tcp" port="8000"/>
> <port protocol="tcp" port="8001"/>
> + <port protocol="tcp" port="64667"/>
> </service>
More information about the Kimchi-devel
mailing list