albertomurillo
commented
8 years ago sudo systemctl stop firewalld
This only disables firewalld from starting on boot. but doesnt stops it.
Closed erick0z closed 8 years ago
albertomurillo
commented
8 years ago sudo systemctl stop firewalld
This only disables firewalld from starting on boot. but doesnt stops it.
mrkz
commented
8 years ago -1
we MUST NOT instruct the user to disable/stop their firewall. we could instead add a red letters statement telling the issues with the firewall and maybe some examples on how to get rid of that.
erick0z
commented
8 years ago @mrkz, right now, iptables/firewalld rules need to be added manually in order to get the cluster work. That may work for the controller but for the compute nodes and network nodes, bridges and interfaces are spawned dynamically. That means, every time a new bridge is spawn, new rules need to be added manually, for every compute and network node.
albertomurillo
commented
8 years ago Also we dont enable firewall or selinux/apparmor on ubuntu/clearlinux deployments
When using fedora nodes with firewalld activated(default), it may cause cluster interoperability issues due to dynamic interface spawn. So a note on disabling the firewall is added.