Browse code
Add iptables rules for ostree server
Change-Id: I3a2cf6818abbc09a3511e3f534a6c82265be9fff
Reviewed-on: http://photon-jenkins.eng.vmware.com/1060
Tested-by: jenkins-photon <wangnan2015@hotmail.com>
Reviewed-by: suezzelur <anishs@vmware.com>
suezzelur authored on 2016/06/03 19:42:07Showing 1 changed files
| ... | ... |
@@ -46,5 +46,7 @@ class OstreeServerInstaller(Installer): |
| 46 | 46 |
self.run("cp ./ostree-server-greeting.txt {}/etc/issue".format(self.photon_root))
|
| 47 | 47 |
self.run("ln -s /usr/lib/systemd/system/httpd.service {}/usr/lib/systemd/system/multi-user.target.wants/httpd.service".format(self.photon_root))
|
| 48 | 48 |
self.run("tar -xf /mnt/cdrom/ostree-repo.tar.gz -C {}/srv/rpm-ostree/repo".format(self.photon_root))
|
| 49 |
+ self.run("sed -i \"\\$i iptables -A INPUT -m state --state NEW,ESTABLISHED -p tcp --dport 80 -j ACCEPT\" {}/etc/systemd/scripts/iptables".format(self.photon_root))
|
|
| 50 |
+ self.run("sed -i \"\\$i iptables -A INPUT -m state --state NEW,ESTABLISHED -p tcp --dport 443 -j ACCEPT\" {}/etc/systemd/scripts/iptables".format(self.photon_root))
|
|
| 49 | 51 |
|
| 50 | 52 |
|