Home » Infrastructure » Cloud and Hosting » firewalld and DB System nodes (OCI DB System, OL7.9)
firewalld and DB System nodes [message #689332] Fri, 24 November 2023 11:12
John Watson
Messages: 8938
Registered: January 2010
Location: Global Village
Senior Member
DB System nodes have the firewall not only disabled but masked:
[root@agoco ~]#
[root@agoco ~]# systemctl status firewalld
‚óŹ firewalld.service
Loaded: masked (/dev/null; bad)
Active: inactive (dead)
[root@agoco ~]#
[root@agoco ~]#
there is no way that can pass the CIS Benchmark for a security audit. It would be easy enough to unmask, start and configure it but I don't know if that is going to break any of the OCI automated management facilities. I have a TAR open asking whether I can do this, but no response yet. If ever. What has anyone else done? Any problems with enabling the firewalld?

Compute Instances don't have quite the same problem: it is disabled but not masked. So I'm assuming that it is OK to enable it. Any thoughts on that?

Thankyou for any insight.

Previous Topic: Difference between cloud computing and distributed computing?
Goto Forum:

Current Time: Tue Jun 25 04:27:33 CDT 2024