cluster:154
Warning: Undefined array key -1 in /usr/share/dokuwiki/inc/html.php on line 1458
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | |||
|
cluster:154 [2018/07/31 12:38] hmeij07 |
cluster:154 [2018/08/17 08:48] hmeij07 |
||
|---|---|---|---|
| Line 10: | Line 10: | ||
| < | < | ||
| - | + | ||
| - | + | ||
| - | [root@ohpc0-test ~]# systemctl stop NetworkManager | + | |
| [root@ohpc0-test ~]# systemctl disable NetworkManager | [root@ohpc0-test ~]# systemctl disable NetworkManager | ||
| - | + | ||
| - | [root@ohpc0-test ~]# systemctl stop firewalld | + | |
| [root@ohpc0-test ~]# systemctl disable firewalld | [root@ohpc0-test ~]# systemctl disable firewalld | ||
| - | [root@ohpc0-test ~]# yum install iptables-services -y | + | [root@ohpc0-test ~]# yum install iptables-services -y |
| + | |||
| [root@ohpc0-test ~]# systemctl enable iptables | [root@ohpc0-test ~]# systemctl enable iptables | ||
| - | [root@ohpc0-test ~]# systemctl enable ip6tables | ||
| [root@ohpc0-test ~]# vi / | [root@ohpc0-test ~]# vi / | ||
| # lock up port 22: note " | # lock up port 22: note " | ||
| - | -A INPUT -i enp8s0 | + | -A INPUT -p tcp -m state --state NEW -m tcp -s 129.133.0.0/ |
| # local allow: note " | # local allow: note " | ||
| - | -A INPUT -i enp4s0 | + | -A INPUT -d 192.168.0.0/ |
| - | -A INPUT -i enp4s0 | + | -A INPUT -d 192.168.0.0/ |
| - | [root@ohpc0-test ~]# vi / | + | [root@ohpc0-test ~]# reboot |
| - | # comment out port 22 | + | # check firwewall |
| - | + | ||
| - | [root@ohpc0-test ~]# systemctl restart iptables | + | |
| - | [root@ohpc0-test ~]# systemctl restart ip6tables | + | |
| [root@ohpc0-test ~]# iptables -L | [root@ohpc0-test ~]# iptables -L | ||
| Chain INPUT (policy ACCEPT) | Chain INPUT (policy ACCEPT) | ||
| - | target | + | ... |
| - | ACCEPT | + | |
| - | ACCEPT | + | |
| - | ACCEPT | + | |
| ACCEPT | ACCEPT | ||
| ACCEPT | ACCEPT | ||
| ACCEPT | ACCEPT | ||
| REJECT | REJECT | ||
| - | |||
| - | Chain FORWARD (policy ACCEPT) | ||
| - | target | ||
| - | REJECT | ||
| - | |||
| - | Chain OUTPUT (policy ACCEPT) | ||
| - | target | ||
| # copy global hpc /etc/hosts in place | # copy global hpc /etc/hosts in place | ||
| - | # check hostname is on rpovisionng | + | # check hostname is on provisioning |
| [root@ohpc0-test ~]# ping `hostname` | [root@ohpc0-test ~]# ping `hostname` | ||
| PING ohpc0-test (192.168.1.249) 56(84) bytes of data. | PING ohpc0-test (192.168.1.249) 56(84) bytes of data. | ||
| 64 bytes from ohpc0-test (192.168.1.249): | 64 bytes from ohpc0-test (192.168.1.249): | ||
| - | |||
| - | [root@ohpc0-test ~]# reboot | ||
| </ | </ | ||
cluster/154.txt · Last modified: 2018/08/17 08:48 by hmeij07
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
