[Bugs] [Bug 1253967] glusterfs doesn't include firewalld rules
bugzilla at redhat.com
bugzilla at redhat.com
Mon Aug 31 11:12:45 UTC 2015
https://bugzilla.redhat.com/show_bug.cgi?id=1253967
Kaushal <kaushal at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |kaushal at redhat.com
--- Comment #7 from Kaushal <kaushal at redhat.com> ---
We are working on a solution for this.
The solution in it's current state is as follows,
- We ship a new package glusterfs-firewalld for fedora and centos7. This
package contains firewalld configuration (in the form of firewalld services)to
open ports required by GlusterFS and a couple of hook scripts which keep the
firewalld configuration updated. Two service configurations will be shipped.
- glusterfs-static - which contains the static glusterfs ports
- glusterfs-dynamic - which contains the variable brick ports and is kept
updated by the hook scripts
- The hook scripts will be run when a brick is started (or stopped). The hook
scripts will add (or remove) the brick port into (from) the firewalld
configuration, and perform a firewalld reload, to have firewalld reload the
updated services. Changes are required in GlusterD to provide the hook scripts
with the ports.
- The user needs to only enable the glusterfs firewalld services on the network
of their choice to open up the required ports.
- As an additional goal, we could also provide a glusterfs firewalld zone,
which enables all the firewalld services required by glusterfs (nfs, swift, ssh
etc.). This can make it even simpler for a user to enable all the firewall
rules required for running glusterfs.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=cGMZAoY3kM&a=cc_unsubscribe
More information about the Bugs
mailing list