I just ran to an issue where the network node was not able to communicate with the message server, "controller" , when I disabled the firewall on the controller, I saw that it was able to connect without issue. Is the firewall necessary on the host machines?, controller, network and compute?
thanks
You don't have to run it on the controller. For the network/compute neutron handles the iptable rules, you could add custom rules to allow other traffic to the host if you wanted. It isn't required, but for security you may want to setup custom rules. If you have issues with configuring rules due to familiarity with iptables you could use the "tui" package. It provides a decent text based ui that guides you through setting up rules.
Package: system-config-firewall-tui
So can I disable it then? I would be providing hardware firewall into the network where i would block/allow traffic.
thanks for you response! :P
Asked: 2014-05-08 13:05:52 -0600
Seen: 193 times
Last updated: May 08 '14
