[Ovirt-devel] [PATCH REPOST]: Configure iptables on the managed node
Chris Lalancette
clalance at redhat.com
Wed Jul 9 21:00:34 UTC 2008
Chris Lalancette wrote:
> I totally forgot the COMMIT line in the iptables stuff; not sure how it worked
> last time without that. Anyway, here is the updated patch; ignore the last one.
>
> One of the side-effects of the SELinux support that recently went into
> livecd-tools (and is now in Fedora 9) is that it runs lokkit at the end of
> installation. This results in the default firewall being applied to the managed
> node. In general, this is a good thing, but we need to customize that firewall
> to allow incoming ssh and incoming libvirt, at the very least (there may be more
> in the future). The attached patch just configures the firewall in %post, and
> with this in place I can successfully ssh into the managed node and use remote
> libvirt commands.
Committed
Chris Lalancette
More information about the ovirt-devel
mailing list