-
Language:
English
-
Language:
English
9.10.7. Configuring the Port Proxy
All OpenShift Enterprise applications are contained within gears. These applications listen for connections on the loopback interface. The node host uses
iptables
to listen on external-facing ports and forwards incoming requests to the appropriate application.
Procedure 9.9. To Configure the OpenShift Port Proxy:
- Verify that
iptables
is running and will start on boot.#
service iptables restart
#chkconfig iptables on
- Verify that the port proxy starts on boot:
# chkconfig openshift-iptables-port-proxy on
- Modify the
iptables
rules:# sed -i '/:OUTPUT ACCEPT \[.*\]/a :rhc-app-comm - [0:0]' /etc/sysconfig/iptables
# sed -i '/-A INPUT -i lo -j ACCEPT/a -A INPUT -j rhc-app-comm' /etc/sysconfig/iptables
Warning
After you run these commands, do not run any furtherlokkit
commands on the node host. Runninglokkit
commands after this point overwrites the requirediptables
rules and causes theopenshift-iptables-port-proxy
service to fail during startup.Restart theiptables
service for the changes to take effect:#
service iptables restart
- Start the service immediately:
# service openshift-iptables-port-proxy start
- Run the following command so that the
openshift-gears
service script starts on boot. Theopenshift-gears
service script starts gears when a node host is rebooted:# chkconfig openshift-gears on
Note
If you use the kickstart or bash script, the
configure_port_proxy
function performs these steps.