Red Hat Bugzilla – Bug 1298096
Red Hat Storage Console should be fully functional with firewall activated
Last modified: 2016-08-11 14:24:04 EDT
Description of problem:
Now firewall should be disabled for correct functionality. I think RHSCon should work with activated firewall.
Version-Release number of selected component (if applicable):
Port list has been documented by Dev team on Trello card, but QE team meeds to be verify and ensure it's documented.
Published the list of ports to be documented. Once QE verifies, need to move this bug to documentaion
(In reply to Nishanth Thomas from comment #6)
> Published the list of ports to be documented. Once QE verifies, need to move
> this bug to documentaion
There are some tweaks in the progress, along with the documentation. Moving
back to assigned and the dev team is expected to flip it back to ON_QA when
the setup is finalized.
The firewall configuration to be documented has been communicated to doc team. It is also documented in skyring github wiki: https://github.com/skyrings/skyring/wiki/Firewall-configuration-for-skyring.
Have sent a patch for removing the disable of firewalld during skyring-setup.
Note, the ceph-installer package contains its own firewalld service definition, so you can avoid specifying the port number (8181), and simply enable it like so:
sudo firewall-cmd --zone=public --add-service=ceph-installer
(In reply to Ken Dreyer (Red Hat) from comment #9)
> Note, the ceph-installer package contains its own firewalld service
> definition, so you can avoid specifying the port number (8181), and simply
> enable it like so:
> sudo firewall-cmd --zone=public --add-service=ceph-installer
I have created new RFE BZ 1350859 to track this feature.
Based on section "2.4. Firewall Configuration" of "Red Hat Storage Console 2.0
Quick Start Guide", I reconfigured and enabled firewall in QE deployment setup.
On RHSC 2.0 server machine:
On Ceph 2.0 storage machines:
With firewall enabled, our API test suite is passing without any issues.