community.sap_install icon indicating copy to clipboard operation
community.sap_install copied to clipboard

Published 20 hours ago verified publisher icon sap-linuxlab

sap_ha_*: integrated tasks for firewalld local configuration to allow traffic

Open sean-freeman opened this issue 3 years ago • 2 comments

Self-contained within the Ansible Role, is a requirement for Ansible Tasks to perform firewalld local configuration to allow traffic for SAP HANA System Replication (HSR).

See:

  • https://github.com/sap-linuxlab/community.sap_install/pull/161#discussion_r909554649
  • https://github.com/sap-linuxlab/community.sap_install/pull/161#discussion_r909561822

sean-freeman avatar Jun 30 '22 14:06 sean-freeman

@ja9fuchs was this removed during re-write of sap_ha_pacemaker_cluster ?

sean-freeman avatar Dec 28 '22 12:12 sean-freeman

Yes, because we already agreed that firewall setup should be handled through a central place, like through including the firewalld LSR and feeding the ports that the individual role defines for the services the role covers.

Since firewall setup was not yet in scope of being enabled by default in our roles I left it out of the re-work in favour of other priorities.

ja9fuchs avatar Jan 19 '23 14:01 ja9fuchs