HP XC System Software Administration Guide Version 3.2.1

Notes:
For clarity, the mnemonics for the interface are shown in bold and the noncomment lines
span two lines. Noncomment lines each must take only one line in the iptables.proto
file.
These lines must be placed before the following line:
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
# set up port 389 on Interconnect interface:
-A RH-Firewall-1-INPUT -i Interconnect -p tcp -m tcp
--dport 389 -j ACCEPT
# setup port 389 on admin interface
-A RH-Firewall-1-INPUT -i Admin -p tcp -m tcp
--dport 389 -j ACCEPT
Ensure that this portion of the /etc/sysconfig/iptables.proto file resembles the
following:
# set up port 389 on Interconnect interface:
-A RH-Firewall-1-INPUT -i Interconnect -p tcp -m tcp --dport 389 -j ACCEPT
# setup port 389 on admin interface
-A RH-Firewall-1-INPUT -i Admin -p tcp -m tcp --dport 389 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
3. Optionally, enter the following command to open the port on all nodes in the HP XC system
until the nodes are reimaged:
Note:
This command was entered using the backslash character (\) to continue it on another line.
# cexec -a "openipport --port 389 --protocol tcp \
--interface Admin,Interconnect --verbose"
160 Opening an IP Port in the Firewall