[Spacewalk-list] Configure Firewalld in Kickstart-Script
Sean Johnson
sean at ttys0.net
Wed Dec 16 15:09:47 UTC 2015
You would be better served to manage your firewall rules post
installation via some form of configuration management. In my case, the
post section of kickstart is only for getting CFEngine setup, which then
proceeds to do all the rest of the setup, including firewall rules.
On 15 Dec 2015, at 5:33, Philipp Wehling wrote:
> Hello,
>
> I want to fully automate my linux-installation process. For that,
> specific firewall-rules are needed.
>
> I created a post-installation script like that:
>
>
> [...]
>
>
>
> systemctl restart firewalld
> firewall-cmd --add-rich-rule='rule family="ipv4" source
> address="xxx.xxx.xxx.xxx" port port="xxxx" protocol="tcp" accept'
> --permanent
> firewall-cmd --reload
>
>
>
>
> [...]
>
> But this wont work. It tells me the following:
>
>
>
> systemctl restart firewalld --> Running in chroot, ignoring request
> firewall-cmd --add-rich-rule=... --> FirewallD is not running
> firewall-cmd --reload --> FirewallD is not running
>
>
>
>
>
>
>
> I was trying to run as nochroot-script, but then it isnt executed at
> all ...
>
>
>
>
>
>
>
> Any help?
>
>
>
>
>
>
>
> kind regards,
>
> Philipp Wehling
> _______________________________________________
> Spacewalk-list mailing list
> Spacewalk-list at redhat.com
> https://www.redhat.com/mailman/listinfo/spacewalk-list
More information about the Spacewalk-list
mailing list