634586 – Need changes to the firewall requirements

Bug 634586 - Need changes to the firewall requirements

Summary: Need changes to the firewall requirements

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat Update Infrastructure for Cloud Providers
Classification:	Red Hat
Component:	Documentation
Sub Component:
Version:	1.1
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Lana Brindley
QA Contact:	wes hayutin
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	649091
TreeView+	depends on / blocked

Reported:	2010-09-16 13:10 UTC by Jay Dobies
Modified:	2013-10-23 23:19 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-12-13 23:10:46 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Description Jay Dobies 2010-09-16 13:10:53 UTC

* Remove the 873 requirement for rsync; it uses 22 along with SSH
* Replace the current text for the SSH from RHUA -> CDS entry (port 22) with the text from the 873 port line:

"Used for synchronizing packages from RHUA to the CDS instances"

In other words, we're removing the reference about configuring the CDS instances from the RHUA.

* Remove the port 80 line; we no longer use HTTP (i.e. non-HTTPS) anywhere in RHUI.
* In place of the port 80 line, add one for 443 access from client to load balancer:

Port: 443
Protocol: HTTPS
Source: Client
Destination: Load Balancer
Description: Used by the client to balance yum requests across CDS instances

Comment 1 Lana Brindley 2010-11-10 02:47:17 UTC

Added to content spec. Installation -> Technical Requirements.

LKB

Comment 2 Lana Brindley 2010-11-17 02:07:46 UTC

(In reply to comment #0)
> * Remove the 873 requirement for rsync; it uses 22 along with SSH
> * Replace the current text for the SSH from RHUA -> CDS entry (port 22) with
> the text from the 873 port line:
> 
> "Used for synchronizing packages from RHUA to the CDS instances"
> 
> In other words, we're removing the reference about configuring the CDS
> instances from the RHUA.

<row>
	<entry>
		22
	</entry>
	 <entry>
		SSH, rsync
	</entry>
	 <entry>
		RHUA
	</entry>
	 <entry>
		CDS
	</entry>
	 <entry>
		Used for synchronizing packages from RHUA to the CDS instances
	</entry>
</row>

> 
> * Remove the port 80 line; we no longer use HTTP (i.e. non-HTTPS) anywhere in
> RHUI.

Done.

> * In place of the port 80 line, add one for 443 access from client to load
> balancer:
> 
> Port: 443
> Protocol: HTTPS
> Source: Client
> Destination: Load Balancer
> Description: Used by the client to balance yum requests across CDS instances

<row>
	<entry>
		443
	</entry>
	 <entry>
		HTTPS
	</entry>
	 <entry>
		Client
	</entry>
	 <entry>
		Load balancer
	</entry>
	 <entry>
		 Used by the client to balance <command>yum</command> requests across CDS instances
	</entry>
</row>

LKB

Comment 3 Lana Brindley 2010-11-17 02:08:03 UTC

Further proofing and review undertaken in this chapter. See revision 0-2.

LKB

Comment 5 Lana Brindley 2010-12-13 23:10:46 UTC

Published 14 December 2010: http://docs.redhat.com/docs/en-US/Red_Hat_Update_Infrastructure/1.2/html/Installation_Guide/index.html

Please raise any issues as new bugs against this live version.

Thanks,
LKB

Note You need to log in before you can comment on or make changes to this bug.