User Tools

Site Tools

Trace:
iscsi_centos7

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
iscsi_centos7 [2015/08/22 10:41] herwarthiscsi_centos7 [2015/08/22 10:46] (current) herwarth
Line 6: Line 6:
  
 <code> <code>
-yum install targetcli net-tools wget chrony+rpm -ivh https://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-5.noarch.rpm 
 +yum install targetcli net-tools wget chrony check-mk-agent xinetd 
 + 
 wget https://downloads.linux.hp.com/SDR/add_repo.sh wget https://downloads.linux.hp.com/SDR/add_repo.sh
 sh ./add_repo.sh spp -d rhel -r 7 sh ./add_repo.sh spp -d rhel -r 7
Line 133: Line 135:
 firewall-cmd --permanent --zone=iscsi2 --add-source=192.168.1.0/24 firewall-cmd --permanent --zone=iscsi2 --add-source=192.168.1.0/24
 </code> </code>
 +Add services
 +<code - /etc/firewalld/services/check-mk-agent.xml>
 +<?xml version="1.0" encoding="utf-8"?>
 +<service>
 +  <short>check-mk-agent</short>
 +  <description>Check_MK Agent</description>
 +  <port protocol="tcp" port="6556"/>
 +</service>
 +</code>
 +<code - /etc/firewalld/services/iscsi-target.xml>
 +<?xml version="1.0" encoding="utf-8"?>
 +<service>
 +  <short>iscsi-target</short>
 +  <description>iSCSI target</description>
 +  <port protocol="tcp" port="3260"/>
 +</service>
 +</code>
 +Add services to zones
 +<code>
 +firewall-cmd --permanent --zone=management --add-service=ssh
 +firewall-cmd --permanent --zone=local --add-service=ssh
 +
 +firewall-cmd --permanent --zone=iscsi1 --add-service=iscsi-target
 +firewall-cmd --permanent --zone=iscsi2 --add-service=iscsi-target
 +
 +firewall-cmd --permanent --zone=management --add-rich-rule="rule family="ipv4" \
 +source address="172.16.4.14" service name="check-mk-agent" accept"
 +firewall-cmd --permanent --zone=management --add-rich-rule="rule family="ipv6" \
 +source address="2a00:1630:59:4::14" service name="check-mk-agent" accept"
 +</code>
 +
 +Make sure all interfaces are set to public as default!
 +  firewall-cmd --set-default-zone=public
 +  firewall-cmd --reload
 +
 {{tag>centos}} {{tag>centos}}
iscsi_centos7.1440240082.txt.gz · Last modified: by herwarth

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki