Hide Forgot
Adding a service file enables configuring firewalld like sudo firewall-cmd --zone=public --add-service=corosync --permanent The file looks should be ini /usr/lib/firewalld/services/corosync.xml and should look like this: <?xml version="1.0" encoding="utf-8"?> <service> <short>corosync</short> <description>The Corosync Cluster Engine Executive is a Group Communication System with additional features for implementing high availability within applications. Enable this option if your machine is a node in a Corosync cluster.</description> <port protocol="udp" port="5404-5406"/> </service>
There is a high-availability service file in firewalld. Does that suffice? $ rpm -qf /usr/lib/firewalld/services/high-availability.xml firewalld-0.4.4.1-1.fc24.noarch $ cat /usr/lib/firewalld/services/high-availability.xml <?xml version="1.0" encoding="utf-8"?> <service> <short>Red Hat High Availability</short> <description>This allows you to use the Red Hat High Availability (previously named Red Hat Cluster Suite). Ports are opened for corosync, pcsd, pacemaker_remote, dlm and corosync-qnetd.</description> <port protocol="tcp" port="2224"/> <port protocol="tcp" port="3121"/> <port protocol="tcp" port="5403"/> <port protocol="udp" port="5404"/> <port protocol="udp" port="5405"/> <port protocol="tcp" port="21064"/> </service>
Sure, sorry I missed that.