adding new 3300 port for ceph msgr2 protocol
This commit is contained in:
parent
e907220280
commit
b37d2b5c74
|
@ -91,10 +91,10 @@ case $1 in
|
||||||
ip6tables -A INPUT -s 2604:bbc0:1:20::a001 -p tcp --sport 443 -j ACCEPT -m comment --comment "# mirrors.wit.com"
|
ip6tables -A INPUT -s 2604:bbc0:1:20::a001 -p tcp --sport 443 -j ACCEPT -m comment --comment "# mirrors.wit.com"
|
||||||
|
|
||||||
## ceph
|
## ceph
|
||||||
ip6tables -A INPUT -i lo -p tcp --dport 6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
ip6tables -A INPUT -i lo -m multiport -p tcp --dports 3300,6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
||||||
ip6tables -A INPUT -i lo -p tcp --sport 6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
ip6tables -A INPUT -i lo -m multiport -p tcp --sports 3300,6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
||||||
ip6tables -A INPUT -m policy --pol ipsec --dir in -p tcp --dport 6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
ip6tables -A INPUT -m policy --pol ipsec --dir in -m multiport -p tcp --dports 3300,6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
||||||
ip6tables -A INPUT -m policy --pol ipsec --dir in -p tcp --sport 6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
ip6tables -A INPUT -m policy --pol ipsec --dir in -m multiport -p tcp --sports 3300,6789 -j ACCEPT -m comment --comment "ceph mon traffic"
|
||||||
ip6tables -A INPUT -i lo -m multiport -p tcp --dports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
ip6tables -A INPUT -i lo -m multiport -p tcp --dports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
||||||
ip6tables -A INPUT -i lo -m multiport -p tcp --sports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
ip6tables -A INPUT -i lo -m multiport -p tcp --sports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
||||||
ip6tables -A INPUT -m policy --pol ipsec --dir in -m multiport -p tcp --dports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
ip6tables -A INPUT -m policy --pol ipsec --dir in -m multiport -p tcp --dports 6800:7300 -j ACCEPT -m comment --comment "ceph osd traffic"
|
||||||
|
|
Loading…
Reference in New Issue