Bug 1462095

Summary: nfs-ganesha: Document to open up 2049 UDP port via firewalld
Product: [Red Hat Storage] Red Hat Gluster Storage Reporter: Soumya Koduri <skoduri>
Component: doc-Administration_GuideAssignee: Bhavana <bmohanra>
doc-Administration_Guide sub component: Default QA Contact: Manisha Saini <msaini>
Status: CLOSED CURRENTRELEASE Docs Contact:
Severity: urgent    
Priority: unspecified CC: asriram, bmohanra, mhideo, nlevinki, rhinduja, rhs-bugs, rwheeler, storage-doc
Version: rhgs-3.3   
Target Milestone: ---   
Target Release: RHGS 3.3.0   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-09-21 04:26:07 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1417157    

Description Soumya Koduri 2017-06-16 07:36:55 UTC 
Document URL: 
https://access.redhat.com/documentation/en-us/red_hat_gluster_storage/3.2/html/administration_guide/

Section Number and Name: 
https://access.redhat.com/documentation/en-us/red_hat_gluster_storage/3.2/html/administration_guide/sect-nfs#sect-NFS_Ganesha

6.2.4.1. Port Information for NFS-Ganesha

Describe the issue: 
As mentioned in bug1459909, nfs client udp mount fails as the port is not opened via firewalld. 

Suggestions for improvement: 
Till that bug gets addressed we need to document the port manually as one of the pre-requisites.


Additional information:
Comment 2 Soumya Koduri 2017-06-16 07:42:50 UTC 
The step which need to be documented is as below -

# firewall-cmd --zone=zone_name --add-port=2049/udp
Comment 3 Soumya Koduri 2017-06-16 09:09:12 UTC 
Also we need to document the same in below section as well -

5.1.8. Deploying NFS Ganesha using gdeploy
Enabling Firewall Ports

The changes needed are mentioned in https://bugzilla.redhat.com/show_bug.cgi?id=1462098#c2
Comment 6 Bhavana 2017-07-24 07:22:49 UTC 
The changes are made as suggested in both the sections:

https://access.qa.redhat.com/documentation/en-us/red_hat_gluster_storage/3.3/html-single/administration_guide/#port_firewall_ganesha

https://access.qa.redhat.com/documentation/en-us/red_hat_gluster_storage/3.3/html-single/administration_guide/#gdeploy_ganesha
Comment 7 Manisha Saini 2017-07-27 05:54:35 UTC 
Bhavana,


For the change made in [1] please add the change to open UDP port to persist even after node reboot.

# firewall-cmd --zone=zone_name --add-port=2049/udp
# firewall-cmd --zone=zone_name --add-port=2049/udp --permanent


For [2] as we are using gdeploy to create ganesha cluster,the below note can be added to avoid manual efforts when setting up ganesha cluster via gdeploy


NOTE
To ensure NFS client UDP mount does not fail, ensure to add port 2049/udp in [firewalld] section of gdeploy.


[1] https://access.qa.redhat.com/documentation/en-us/red_hat_gluster_storage/3.3/html-single/administration_guide/#port_firewall_ganesha


[2]https://access.qa.redhat.com/documentation/en-us/red_hat_gluster_storage/3.3/html-single/administration_guide/#gdeploy_ganesha


Moving this to assigned state,to incorporate the required changes
Comment 8 Bhavana 2017-08-03 07:09:45 UTC 
The changes are incorporated in both the sections:

gdeploy: http://ccs-jenkins.gsslab.brq.redhat.com:8080/job/doc-Red_Hat_Gluster_Storage-3.3-Administration_Guide-branch-master/lastSuccessfulBuild/artifact/tmp/en-US/html-single/index.html#gdeploy_ganesha

NFS-Ganesha: http://ccs-jenkins.gsslab.brq.redhat.com:8080/job/doc-Red_Hat_Gluster_Storage-3.3-Administration_Guide-branch-master/lastSuccessfulBuild/artifact/tmp/en-US/html-single/index.html#port_firewall_ganesha
Comment 9 Manisha Saini 2017-08-09 12:16:18 UTC 
Changes looks good to me.Moving this bug to verified state.