Bug 713718

Summary: RFE: Open firewall port for CIM server
Product: Red Hat Enterprise Linux 6 Reporter: Bhavna Sarathy <bsarathy>
Component: ovirt-nodeAssignee: Mike Burns <mburns>
Status: CLOSED DUPLICATE QA Contact: Virtualization Bugs <virt-bugs>
Severity: medium Docs Contact:
Priority: medium    
Version: 6.2CC: acathrow, apevec, leiwang, mburns, ovirt-maint, ycui
Target Milestone: rcKeywords: FutureFeature
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-10-25 17:16:04 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 696848, 712505, 821105, 829518, 856753    
Attachments:
Description Flags
Patch none

Description Bhavna Sarathy 2011-06-16 11:23:10 UTC 
A feature in ovirt-node is neededto enable/disable firewall.   This request is needed as ovirt-node will be adding libvirt-cim into the RHEV-H package list.
Comment 2 Perry Myers 2011-06-16 12:57:52 UTC 
This bug is lacking a little specificity.  It's supposed to be for specifically enabling/disabling the firewall port for the CIM server which is port 5989/tcp (wbem-https)

Changing $subject to be more accurate
Comment 4 Mike Burns 2011-07-22 17:30:31 UTC 
Do we need a UI component for this as well? or just a command line option?
Comment 5 Alan Pevec 2011-07-22 17:59:56 UTC 
For now let's just open the port in the default firewall rules.

We'll have discussion upstream about how to handle switching controlling management framework while keeping others usable in read-only mode and in the meantime RHEV-H 6.2 core image RHEV will be main management, libvirtcim optional in read-only mode.
Comment 6 Andrew Cathrow 2011-07-22 18:09:43 UTC 
(In reply to comment #5)
> For now let's just open the port in the default firewall rules.
> 
> We'll have discussion upstream about how to handle switching controlling
> management framework while keeping others usable in read-only mode and in the
> meantime RHEV-H 6.2 core image RHEV will be main management, libvirtcim
> optional in read-only mode.

The port is open but is the service running by default?
Comment 7 Mike Burns 2011-07-22 19:12:41 UTC 
No, the service is not currently running by default
Comment 8 Mike Burns 2011-07-25 14:05:28 UTC 
Created attachment 515062 [details]
Patch

Add the libvirt-cim firewall port to the default firewall for ipv6, ipv4 for both upstream and rhev builds
Comment 9 Mike Burns 2011-07-25 14:06:44 UTC 
Note:  patch does require previous patch to include upstream firewall

https://www.redhat.com/archives/ovirt-devel/2011-July/msg00022.html
Comment 15 Mike Burns 2011-08-25 16:37:59 UTC 
(In reply to comment #7)
> No, the service is not currently running by default

I was mistaken,  the service is currently configured to run by default.  It doesn't run successfully currently, but it tries to (bug 727532)
Comment 16 Mike Burns 2011-08-25 17:04:08 UTC 
This is being reverted as per bug 757532 Comment 2 and deferred to 6.3
Comment 17 Perry Myers 2011-10-25 17:16:04 UTC 

*** This bug has been marked as a duplicate of bug 712505 ***