Red Hat Bugzilla – Bug 1476311
[Docs][Planning] Include port number 111 in documentation of "Hypervisor Firewall Requirements"
Last modified: 2018-02-12 01:19:03 EST
Description of problem:
The port for NFSv3 111 is configured on the host firewall when it is registered from manager.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Install Host and add / register it to Manager.
2. After registering the host, check the host firewall.
3. the port 111 is configured to be allowed but it is not mentioned in documentation.
111 port is not present for host in document.
Include 111 port inclusion in documentation.
2.3.2. Hypervisor Firewall Requirements
*** Bug 1476308 has been marked as a duplicate of this bug. ***
Didi, can you provide the info required for the table (Protocol, Source, Destination, Purpose) for port 111?
I guess the reason for including it is bug 1177624.
Tal, can you provide the information Tahlia asked for? Thanks.
I basically moved them from one section in the config to another according to bug 1177624, it is used for the portmapper
(In reply to Tal Nisan from comment #4)
> I basically moved them from one section in the config to another according
> to bug 1177624, it is used for the portmapper
Yes, I saw that, but why?
This table has (Protocol, Source, Destination, Purpose).
Protocol is "portmapper".
Destination is "Virtualization Host".
Not sure about the source (engine? another host? no idea) and Purpose (the bug implies we might use it for statsd notifications about locks, but bug 1177624 comment 3 says we do not actually use nfs locks, so not sure).
For example, see the table here: https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.1/html/planning_and_prerequisites_guide/requirements#host-firewall-requirements
From email with Tal:
> The destination is "virtualization host" the protocol is "port mapper"
> and the source is "NFS storage server"
I still have two things to follow up on:
1. A short description of what the port is for (i.e. the Purpose column in https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.1/html/planning_and_prerequisites_guide/requirements#host-firewall-requirements)
2. I'm confused by the Protocol being "portmapper". All other ports in the table linked above have either TCP or UDP under the Protocol column. Checking the open ports on one of my own hosts suggests TCP for port 111.
Reviewed, all OK. Merged.
Now published at https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.1/html/planning_and_prerequisites_guide/requirements#host-firewall-requirements