Hide Forgot
Description of problem: ssh port: 10809 iptables rules: -A INPUT -p tcp -m state --state NEW -m tcp --dport 10809 -j ACCEPT but after installation of ovirt, it modified iptables: -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT so I can't ssh into this machine... Version-Release number of selected component (if applicable): How reproducible: before modify the iptables, please read the real one, not empty all the iptables and write the default. Steps to Reproduce: 1.write rules in iptables: -A INPUT -p tcp -m state --state NEW -m tcp --dport 10809 -j ACCEPT 2.run engine-setup, and confirm write firewall rules 3. after installation, cat /etc/sysconfig/iptables 4. -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT Actual results: -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT Expected results: -A INPUT -p tcp -m state --state NEW -m tcp --dport 10809 -j ACCEPT Additional info:
well, the checkbox does say 'override firewall rules'... I think this was fixed in: commit c93c7e4bd7ea58cbe3af435c95871a061b57822c Author: Alon Bar-Lev <alonbl> Date: Mon Oct 14 23:39:03 2013 +0300 host-deploy: configure ssh port per port used to actual communications Bug-Url: https://bugzilla.redhat.com/show_bug.cgi?id=1018948 Change-Id: I1b581f81ad3f11b22eb20b72d34a41fae47f18bc Signed-off-by: Alon Bar-Lev <alonbl>
What version of product do you use? 4.0 is not valid...
Hi, Please reopen if you have more information. Thanks!