Manualshelf

User`s guide

ManualsBrandsVMware ManualsComputer equipmentVCENTER CONFIGURATION MANAGER 5.3 - SOFTWARE REQUIEREMENTS GUIDE
41424344454647484950
Add the following entry in the /etc/sysconfig/iptables firewall configuration file to allow traffic on
all ports on the provisioning network.
-A RH-Firewall-1-INPUT -i eth1 -j ACCEPT
Configure the OS Provisioning Server Firewall
Configure the firewall on the OS Provisioning Server to allow proper communication on the required
ports.
NOTE If IPTABLES_SAVE_ON_STOP or IPTABLES_SAVE_ON_RESTART are set to “yes” in iptables-
config, you should ensure that you do not accidentally lose your iptables changes.
Procedure
1. Log on to the designated OS Provisioning Server as root.
2. Change directory to /etc/sysconfig.
3. Open the iptables file and add the following line to allow communication on port 40607:
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 40607 -j
ACCEPT
For example (Note highlighted example below):
# Generated by iptables-save v1.3.5 on Fri Dec 3 14:51:10 2010
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [468:43292]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p esp -j ACCEPT
-A RH-Firewall-1-INPUT -p ah -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 40607 -j
ACCEPT
vCenter Configuration Manager Hardware and Software Requirements Guide
44 VMware, Inc.