VScaler: CIX Controller Node OpenStack Installation - Firewall

From Define Wiki
Jump to navigation Jump to search

Firewall Script

  • 0_vscaler-configure-firewall.sh
#!/bin/bash

# assuming openhpc head node is controller

firewall-cmd --permanent --zone=internal --add-port=8773-8776/tcp
firewall-cmd --permanent --zone=internal --add-port=5900-5999/tcp
sleep 1;
firewall-cmd --permanent --zone=internal --add-port=6080-6082/tcp
firewall-cmd --permanent --zone=internal --add-port=35357/tcp
firewall-cmd --permanent --zone=internal --add-port=5000/tcp
firewall-cmd --permanent --zone=internal --add-port=9292/tcp
sleep 1;
firewall-cmd --permanent --zone=internal --add-port=9191/tcp
firewall-cmd --permanent --zone=internal --add-port=9696/tcp
firewall-cmd --permanent --zone=internal --add-port=6000-6002/tcp
firewall-cmd --permanent --zone=internal --add-port=8004/tcp
firewall-cmd --permanent --zone=internal --add-port=8000/tcp
sleep 1;
firewall-cmd --permanent --zone=internal --add-port=8003/tcp
firewall-cmd --permanent --zone=internal --add-port=8777/tcp
firewall-cmd --permanent --zone=internal --add-port=80/tcp
firewall-cmd --permanent --zone=internal --add-port=8080/tcp
sleep 1;
firewall-cmd --permanent --zone=internal --add-port=433/tcp
firewall-cmd --permanent --zone=internal --add-port=873/tcp
firewall-cmd --permanent --zone=internal --add-port=3260/tcp
firewall-cmd --permanent --zone=internal --add-port=3306/tcp
firewall-cmd --permanent --zone=internal --add-port=5672/tcp
#systemctl restart firewalld

# for ceph mon on the headnode  (doesnt work as on ens1 not eno1) 
firewall-cmd --permanent --zone=internal --add-port=6789/tcp
sleep 1;
systemctl restart firewalld
Retrieved from "http://wiki.define-technology.com/mediawiki-1.35.0/index.php?title=VScaler:_CIX_Controller_Node_OpenStack_Installation_-_Firewall&oldid=14761"