[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: [atomic-devel] Atomic ISO has bad default IPtables
- From: Josh Berkus <jberkus redhat com>
- To: Jonathan Lebon <jlebon redhat com>
- Cc: atomic-devel projectatomic io
- Subject: Re: [atomic-devel] Atomic ISO has bad default IPtables
- Date: Wed, 22 Jun 2016 21:58:02 -0700
On 06/22/2016 07:44 PM, Jonathan Lebon wrote:
> ----- Original Message -----
>> Folks,
>>
>> Bringing this to atomic-devel because I'm not sure that it isn't an
>> issue with centos Atomic ISOs as well. Also, I'm not quite sure where
>> the rule is coming from.
>
> They come from the iptables package itself:
>
> http://pkgs.fedoraproject.org/cgit/rpms/iptables.git/tree/sysconfig_iptables
>
>> Where's the best place to fix this?
>
> This normally shouldn't be an issue since e.g. the
> k8/contrib ansible playbooks insert rules at the top. That
> said, if you're encountering issues, it might mean that
> we're missing a few rules. I would file an issue there with
> more details probably.
>
Exposing services definitely doesn't work with the current set of rules.
Interestingly, I have not run into this issue on AWS, so AWS mush
replace some iptables rules or something.
--
--
Josh Berkus
Project Atomic
Red Hat OSAS
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]