The kickstart file I started with was generated by the installer after a manual install and placed in /root/anaconda-ks.cfg. There seems to be a discrepancy with the description in the customization guide and the kickstart file actually created by the installer. This is the original line-
firewall --medium --dhcp --port=sunrpc:tcp --port=X11:tcp --port=sunrpc:tcp --port=X11:tcp --port=ssh:tcp
I don't understand-
*why sunrpc and X11 are listed twice
*why they aren't comma separated like the documentation says they should be
*why a hole does open for ssh when put in that format and NOT for sunrpc or X11
i suppose i could either disable the firewall or script some new iptables rules in the %post section. if anyone knows how to make this work though, i'd much like to hear it...
thanks,
jurvis lasalle
On Wednesday, Aug 20, 2003, at 20:31 America/New_York, Jason Dixon wrote:
On Wed, 2003-08-20 at 17:42, jurvis lasalle wrote:i'm kickstarting some computers and need to open up ports 111 and 6000 for NIS and x11. i have this line in my kickstart file: firewall --medium --dhcp --port=111:tcp --port=6000:tcp --port=ssh:tcp
this does open holes for dhcp and ssh, but not NIS or x11. i have replaced the 111 with sunrpc and 6000 with x11, but that doesn't work either. any clues...?
You only want to use the --port option once. Separate port:protocol combinations with commas. The following should work for you:
firewall --medium --dhcp --ssh --port=111:tcp,6000:tcp
Lots of good stuff here:
http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/custom-guide/s1- kickstart2-options.html
--
Jason Dixon, RHCE
DixonGroup Consulting
http://www.dixongroup.net
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
