Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
A
ansible
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 36
    • Issues 36
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Operations
    • Operations
    • Incidents
  • Analytics
    • Analytics
    • Repository
    • Value Stream
  • Snippets
    • Snippets
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Create a new issue
  • Commits
  • Issue Boards
  • las-it-organisation
  • 32-0-IT instructions and rules
  • ansible
  • Issues
  • #71

Closed
Open
Opened Jul 09, 2019 by julian.gethmann@gethmannOwner

Fix EPICS role with Firewall at CS

CSS does not behave right due to firewall issues.

Setup: CS + ANKA-VPN

Problem: PVs are not shown as connected, though caget works.

Workaround:

sudo firewall-cmd --add-port=5064/udp --permanent
sudo firewall-cmd --add-source-port=5064/udp --permanent
sudo systemctl reload firewalld

Ideas for better fixes: Add ANKA-VPN to internal-zone. Or do a similar thing to the iptables rule:

iptables -I INPUT 1 -m state --state ESTABLISHED,RELATED -j ACCEPT
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: las-it-organisation/32-0-IT-InstructionsAndRules/ansible#71