[ovirt-users] Hosts firewall custom setup
mperina at redhat.com
Mon Feb 26 14:06:07 UTC 2018
On Mon, Feb 26, 2018 at 2:49 PM, Nicolas Ecarnot <nicolas at ecarnot.net>
> Le 26/02/2018 à 14:03, Yedidyah Bar David a écrit :
>> On Mon, Feb 26, 2018 at 2:01 PM, Nicolas Ecarnot <nicolas at ecarnot.net>
>>> On oVirt 18.104.22.168, I'm trying to setup custom iptables rules as I'm doing
>>> since years with engine-config --set IPTablesConfigSiteCustom="blah blah
>>> On my hosts, I can see in my hosts that /etc/sysconfig/iptables does
>>> the correct custom rules I added, but when manually checking with
>>> -L, I don't see my rules active.
>>> On my hosts, I see that the iptables services is stopped and disabled,
>>> that the firewalld service is up and running.
>>> That explains why iptables customization has no effect.
>> IIRC the type of firewall is now set per cluster or something like that,
>> sure about the details - adding Ondra.
> Per cluster, one can indeed choose the firewall type.
> I suppose it translates on the hosts into the activation of the adequate
> But how do we add custom rules in case of firewalld type?
> On the hosts, I imagine that could translate into changes in :
Please take a look at below RFE introducing firewalld support for host and
blog post to read about new possibilities to customize host-deploy process
(which also can be used for custom firewalld rules) in oVirt 4.2:
> Nicolas ECARNOT
> Users mailing list
> Users at ovirt.org
Associate Manager, Software Engineering
Red Hat Czech s.r.o.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users