Skip to Content.
Sympa Menu

perfsonar-user - Re: [perfsonar-user] confused about iptables vs firewalld on CentOS 7

Subject: perfSONAR User Q&A and Other Discussion

List archive

Re: [perfsonar-user] confused about iptables vs firewalld on CentOS 7


Chronological Thread 
  • From: Bill Bradford <>
  • To: Pete Siemsen <>
  • Cc:
  • Subject: Re: [perfsonar-user] confused about iptables vs firewalld on CentOS 7
  • Date: Wed, 18 Jul 2018 14:34:02 -0500
  • Ironport-phdr: 9a23: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
Pete,

"firewall-cmd --zone=public --add-port=6556/tcp —permanent” adds the entry to the config file but doesn’t actually make it active.

"firewall-cmd --zone=public --add-port=6556/tcp" without the --permanent changes the running state but not the config file, so you need to do both. Or firewall-cmd --reload to pick up the change from the config.

Bill


On Jul 18, 2018, at 2:27 PM, Pete Siemsen <> wrote:

I'm trying to enable check_mk monitoring of my brand new perfsonar 4.0.2 system. In other words, I need to allow inbound connections to port 6556. My recipe for installing check_mk says to do this:

firewall-cmd --zone=public --add-port=6556/tcp --permanent

...which executed without error, but inbound access to port 6556 is still blocked.

Then I investigated and got confused. There's a firewalld process running, yet "iptables -L" shows some rules that apply to perfsonar.

So which firewall system is actually running: iptables or firewalld?

-- Pete

--
To unsubscribe from this list: https://lists.internet2.edu/sympa/signoff/perfsonar-user


Archive powered by MHonArc 2.6.19.

Top of Page