Project

General

Profile

Actions
Copy link

action #129083

closed

[qem][qe-core] Enhance firewall zones/services configuration in AutoYaST configuration file

Added by rfan1 over 1 year ago. Updated 7 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
rfan1
Category:
Enhancement to existing tests
Target version:
QA - QE-Core: Ready
Start date:
2023-05-06
Due date:
% Done:

0%

Estimated time:
Difficulty:

Description

Description

We may need to make sure the system installed via autoyast can get the same firewall configuration as we do with interactive installation.
However, currently we are maintaining a single configuration file for each sle15/sle12 platform.

So I will try to do some enhancement to current autoyast template file. But we may need to do enough VRs to make sure the changes don't introduce new issues.

Action items

  1. Current firewall configuration seems fine, but we may consider the service ssh and port 22 due to different requirements on each platform [for s390x and powerVM, we need unblock it due to remote worker access needs ssh port open]
  2. Use as few lines as we can to define firewall, then we can get default firewall setting [the same configuration as we do via interactive install]
  3. Don't change the default firewall behavior as interactive installation, that will cause problems and will miss test coverage.

Related issues 1 (0 open1 closed)

Copied from openQA Tests - action #128843: [qem][qe-core]test fails in yast2_lan_restartResolvedrfan12023-05-06

Actions
Actions
Copy link

Also available in: Atom PDF