|
version 1.4, 2019/12/03 00:46:07
|
version 1.5, 2021/03/13 20:58:10
|
|
Line 89 Finish installing your server, reboot it
|
Line 89 Finish installing your server, reboot it
|
| </p> |
</p> |
| <h3>Firewall Configuration</h3> |
<h3>Firewall Configuration</h3> |
| <p> |
<p> |
| LON-CAPA uses the traditional iptables package instead of the recent Firewalld, included for the |
Starting with LON-CAPA 2.11.3 you have the option of using either firewalld or iptables to |
| first time with RHEL7. Accordingly, you should install iptables-services, disable firewalld, |
manage the Firewall on your RHEL7 server/VM, as both are compatible with LON-CAPA's |
| and enable iptables. |
port management.</p> |
| |
<p>Enable access to standard web server ports (i.e., http and https) as follows if using |
| |
firewalld:</p> |
| |
<pre> |
| |
systemctl enable firewalld |
| |
systemctl start firewalld |
| |
firewall-cmd --zone=public --permanent --add-service=http |
| |
firewall-cmd --zone=public --permanent --add-service=https |
| |
firewall-cmd --reload |
| |
</pre> |
| |
<p>If you prefer to use the traditional iptables package instead of the default firewalld, |
| |
you will need to install iptables-services, disable firewalld, enable iptables, and then |
| |
use the system-config-firewall-tui tool to configure the Firewall. |
| |
</p> |
| <pre> |
<pre> |
| yum install iptables-services |
yum install iptables-services |
| systemctl mask firewalld |
systemctl mask firewalld |
|
Line 100 systemctl enable ip6tables
|
Line 113 systemctl enable ip6tables
|
| systemctl stop firewalld |
systemctl stop firewalld |
| systemctl start iptables |
systemctl start iptables |
| systemctl start ip6tables |
systemctl start ip6tables |
| |
</pre> |
| |
<p> |
| |
If you have a subscription to Red Hat you can use subscription-manager to enable the |
| |
rhel-7-server-optional-rpms, and then install system-config-firewall-tui. |
| |
</p> |
| |
<pre> |
| |
subscription-manager repos --enable rhel-7-server-optional-rpms |
| |
yum install system-config-firewall-tui |
| |
</pre> |
| |
<p>If your server/VM does not currently have a Red Hat subscription you can install wget, |
| |
then download system-config-firewall-tui from the LON-CAPA installation site and install it. |
| |
</p> |
| |
<pre> |
| yum install wget |
yum install wget |
| rpm --import http://install.loncapa.org/versions/redhat/RPM-GPG-KEY-loncapa |
rpm --import http://install.loncapa.org/versions/redhat/RPM-GPG-KEY-loncapa |
| wget http://install.loncapa.org/versions/redhat/7Server/system-config-firewall-tui-1.2.29-10.el7.noarch.rpm |
wget http://install.loncapa.org/versions/redhat/7Server/system-config-firewall-tui-1.2.29-10.el7.noarch.rpm |
| yum localinstall system-config-firewall-tui-1.2.29-10.el7.noarch.rpm |
yum localinstall system-config-firewall-tui-1.2.29-10.el7.noarch.rpm |
| </pre> |
</pre> |
| <p> |
<p> |
| The system-config-firewall-tui tool should be used to configure the Firewall. |
If using iptables, use the system-config-firewall-tui tool to configure the Firewall. |
| </p> |
</p> |
| <pre> |
<pre> |
| system-config-firewall-tui |
system-config-firewall-tui |
|
Line 139 Reboot your system before continuing wit
|
Line 165 Reboot your system before continuing wit
|
| Retrieve the rhel7_loncapa_yum file from the LON-CAPA install site: |
Retrieve the rhel7_loncapa_yum file from the LON-CAPA install site: |
| </p> |
</p> |
| <pre> |
<pre> |
| |
yum install wget |
| wget http://install.loncapa.org/versions/redhat/7Server/rhel7_loncapa_yum.conf |
wget http://install.loncapa.org/versions/redhat/7Server/rhel7_loncapa_yum.conf |
| </pre> |
</pre> |
| <p> |
<p> |
![[BACK]](/icons/back.gif){kind=icon}
Return to RHEL7_install.frag CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / doc / build