Bug 488751

Summary: Incorrect iptables rules documented in Section 2.2.3 of Cluster Administration guide Cluster_Administration(EN)-5 (2008-12-12T10:53)
Product: Red Hat Enterprise Linux 5 Reporter: Brian Likosar <liko>
Component: Documentation-clusterAssignee: Paul Kennedy <pkennedy>
Status: CLOSED DEFERRED QA Contact: Content Services Development <ecs-dev-list>
Severity: medium Docs Contact:
Priority: low    
Version: 5.3CC: adstrong, cluster-maint, paul-andre.chasse
Target Milestone: rcKeywords: Documentation
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-05-27 16:11:05 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Revised content fixing the bug. none

Description Brian Likosar 2009-03-05 16:38:39 UTC 
Description of problem:
Rules given as an example in Section 2.2.3 of Cluster Administration Guide Cluster_Administration(EN)-5 (2008-12-12T10:53) are incorrect and do not work as documented.

Version-Release number of selected component (if applicable):
Cluster_Administration(EN)-5 (2008-12-12T10:53)

How reproducible:
Everytime

Steps to Reproduce:
1.  Follow Cluster Administration Guide up to step 2.2.3 but do not disable built-in firewall (iptables)
2.  Using examples in 2.2.3, apply firewall exceptions as documented

  
Actual results:
Cluster will not start, all nodes report unable to connect on provided ports

Expected results:
Cluster should start and communicate via appropriate ports while leaving iptables enforcing other network restrictions

Additional info:
Suggested fix is to remove the "-i IP addr" portion, which is a valid command (does not error after entering), but also does not allow packets to pass through.
Comment 3 Paul Kennedy 2009-05-27 15:44:29 UTC 
*** Bug 502863 has been marked as a duplicate of this bug. ***
Comment 4 Paul Kennedy 2009-05-27 16:11:05 UTC 
Examples have been removed for the RHEL 5.4 release. Updated documentation will be published with the RHEL 5.4 release, which will serve as documentation for all versions of this product under RHEL 5.
Comment 5 Paul Kennedy 2009-05-27 21:00:15 UTC 
Created attachment 345680 [details]
Revised content fixing the bug. 

This attachment shows changes made to fix bug.