[Freeipa-users] Improvement to documentaion needed for firewalling pls.
Dmitri Pal
dpal at redhat.com
Tue Nov 22 20:04:29 UTC 2011
On 11/22/2011 02:58 PM, Steven Jones wrote:
> Hi,
>
> 2.1.3.4 page 10 lists ports but not what happens with them...
>
> For instance I am now in a very secure environment and find when I do a ipa-client-install the client connects to port 80 and retrieves a ca.crt........now I have to wait 3 days to get port 80 opened up...to the IPA server(s).
>
> If I had better docs then I can make the request before hand....
>
> This of course is the first failure.....if say I find that the ipa-client-install script uses 443 next I will have to wait another 3 days......if I find there are 4 un-documented port calls to get an client install to work......well its a week to 2 weeks wait....
>
>
> regards
>
> Steven Jones
>
> Technical Specialist - Linux RHCE
>
> Victoria University, Wellington, NZ
>
> 0064 4 463 6272
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
When you install IPA the output of the installation lists all the ports
that you need to open and for what service: DNS, Kerberos, LDAP etc.
Is this not enough? What level of details you are looking for?
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
More information about the Freeipa-users
mailing list