Closed akkornel closed 6 years ago
In RHEL and CentOS 7, with firewalld, it would be nice to explain the commands to properly enable Globus.
The following block will do three things:
/etc/services
cat <<EOF >/etc/firewalld/ipsets/globus.xml <?xml version="1.0" encoding="utf-8"?> <ipset type="hash:net"> <short>Globus</short> <description>Globus IPs</description> <option name="family" value="inet"/> <entry>54.237.254.192/29</entry> </ipset> EOF cat <<EOF >/etc/firewalld/services/gridftp-data.xml <?xml version="1.0" encoding="utf-8"?> <service> <short>GridFTP Data</short> <description>GridFTP endpoint-to-endpoint data transfer</description> <port protocol="tcp" port="50000-51000"/> </service> EOF cat <<EOF >/etc/firewalld/services/myproxy.xml <?xml version="1.0" encoding="utf-8"?> <service> <description>MyProxy Authentication</description> <port protocol="tcp" port="7512"/> </service> EOF firewall-cmd --reload firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source ipset="globus" port port="gsiftp" protocol="tcp" accept' firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source ipset="globus" service name="myproxy" accept' firewall-cmd --permanent --add-service=gridftp-data firewall-cmd --reload
Completed in commit 74710663fa9280bbf264ee325f5cf102f67cb0a8!
In RHEL and CentOS 7, with firewalld, it would be nice to explain the commands to properly enable Globus.
The following block will do three things:
/etc/services
).