Bug 1045224

Summary: iptables.*.rules default location should be under /var/lib/openshift
Product: OpenShift Online Reporter: Jhon Honce <jhonce>
Component: ContainersAssignee: Jhon Honce <jhonce>
Status: CLOSED WONTFIX QA Contact: libra bugs <libra-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 2.xCC: admiller, bmeng, dmcphers
Target Milestone: ---Keywords: UpcomingRelease
Target Release: ---   
Hardware: Unspecified   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-06-11 21:57:47 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On: 1070362    
Bug Blocks:    

Description Jhon Honce 2013-12-19 22:14:58 UTC 
Description of problem:
The /etc/openshift/iptables.*.rules files are misplaced. All other proxy configuration is located in /var/lib/openshift which allows OpenShift Operators to backup one mountpoint for all routing and gear information

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:
Configuration information in /etc/openshift

Expected results:
Configuration information under /var/lib/openshift

Additional info:
Suggested directories:
#1 /var/lib/openshift/.http.d
#2 /var/lib/openshift/.routing
Comment 1 openshift-github-bot 2014-02-11 18:28:24 UTC 
Commit pushed to master at https://github.com/openshift/origin-server

https://github.com/openshift/origin-server/commit/aa4f7641f9835de4742276829ad6c14f6717c01c
Bug 1045224 - install iptables rules in new dir

install iptables.*.rules in /var/lib/openshift/.httpd.d instead of
/etc/openshift.

solve 'files listed twice' warning during rpmbuild for
rubygem-openshift-origin-node

	modified:   node/misc/bin/oo-iptables-port-proxy
	modified:   node/misc/sbin/oo-admin-ctl-iptables-port-proxy
	modified:   node/rubygem-openshift-origin-node.spec
Comment 2 Lokesh Mandvekar 2014-02-11 18:29:37 UTC 
https://github.com/openshift/origin-server/pull/4720
Comment 3 Meng Bo 2014-02-12 06:25:01 UTC 
Checked on devenv_4363, the iptables.nat.rules and iptables.filter.rules are placed under /var/lib/openshift/.httpd.d/ now.

[root@ip-10-232-39-225 ~]# ls /var/lib/openshift/.httpd.d/|grep iptables
iptables.filter.rules
iptables.filter.rules.bak
iptables.nat.rules
iptables.nat.rules.bak
[root@ip-10-232-39-225 ~]# ls /etc/openshift/|grep iptables
[root@ip-10-232-39-225 ~]# 


Move bug to verified.