Bug 1314781

Summary: Add Cockpit port to the default ports to be opened when Engine manages the firewall
Product: [oVirt] ovirt-engine Reporter: Fabian Deutsch <fdeutsch>
Component: BLL.InfraAssignee: Martin Perina <mperina>
Status: CLOSED CURRENTRELEASE QA Contact: Pavol Brilla <pbrilla>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 4.0.0CC: bugs, cshao, huiwa, oourfali, ycui
Target Milestone: ovirt-3.6.6Keywords: ZStream
Target Release: 3.6.6Flags: rule-engine: ovirt-3.6.z+
rule-engine: planning_ack+
oourfali: devel_ack+
pstehlik: testing_ack+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ovirt 4.0.0 alpha1 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-05-30 10:53:37 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Infra RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1140646    

Description Fabian Deutsch 2016-03-04 13:31:01 UTC 
Description of problem:
Cockpit will be the default administration interface in Node 4.0.

The cockpit port (9090/tcp) should be added to the list of default ports to be opened, when the user decides to let engine manage the firewall fo the host.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 Fabian Deutsch 2016-04-18 13:53:00 UTC 
We'll need this fix in 3.6.6.
Otherwise access to Cockpit will be blocked upon adding a host.
Comment 2 Oved Ourfali 2016-04-19 09:34:53 UTC 
Martin - can you handle the backport?
Comment 3 Pavol Brilla 2016-05-09 08:30:59 UTC 
New installed host on internal 3.6.6 build :

# iptables -nL | grep 9090
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:9090