etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

bug 8314 - Iptables is being appended with same set of rules again and again on each re-installation of the management 

server: master branch
status 8314: resolved fixed
This commit is contained in:
Frank 2011-02-03 11:38:57 -08:00
parent f36265c408
commit e49a59de8c
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
client/bindir/cloud-setup-management.in
View File

@ -134,6 +134,7 @@ chkconfig = Command("chkconfig")
updatercd = Command("update-rc.d")
ufw = Command("ufw")
iptables = Command("iptables")
iptables_save = Command("iptables-save")
augtool = Command("augtool")
kvmok = Command("kvm-ok")
ifconfig = Command("ifconfig")
@ -234,7 +235,13 @@ if Fedora or CentOS:
if ":on" in o.stdout and os.path.exists("/etc/sysconfig/iptables"):
stderr("Setting up firewall rules to permit traffic to CloudStack services")
service.iptables.start() ; print o.stdout + o.stderr
for p in ports: iptables("-I","INPUT","1","-p","tcp","--dport",p,"-j","ACCEPT")
o = iptables_save()
for p in ports:
r = "INPUT -p tcp -m tcp --dport %s -j ACCEPT" % p
if r in o.stdout:
continue
iptables("-I","INPUT","1","-p","tcp","--dport",p,"-j","ACCEPT")
o = service.iptables.save() ; print o.stdout + o.stderr
else:
stderr("No need to set up iptables as the service is unconfigured or not set to start up at boot")