Chris Murphy wrote:> firewall-cmd --add-service=rsyncd >firewall-cmd --add-service=rsyncd Error: INVALID_SERVICE: rsyncd Is there another place that there needs to be an rsyncd service file, whatever it's supposed to be named, *other* than where systemd wants it? mark> To make it permanent, do the above and this: > firewall-cmd --permanent --add-service=rsyncd > > > Chris Murphy > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >
On Wed, 2015-02-25 at 16:33 -0500, m.roth at 5-cent.us wrote:> Chris Murphy wrote: > > firewall-cmd --add-service=rsyncd > > > firewall-cmd --add-service=rsyncd > Error: INVALID_SERVICE: rsyncd > > Is there another place that there needs to be an rsyncd service file, > whatever it's supposed to be named, *other* than where systemd wants it? > > mark >You can also specify the port firewall-cmd --permanent --add-port=<rsync_port>/tcp> > To make it permanent, do the above and this: > > firewall-cmd --permanent --add-service=rsyncd > > > > > > Chris Murphy > > _______________________________________________ > > CentOS mailing list > > CentOS at centos.org > > http://lists.centos.org/mailman/listinfo/centos > > > > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos
I'm on Fedora 22 Server which has this already: # cat /usr/lib/firewalld/services/rsyncd.xml <?xml version="1.0" encoding="utf-8"?> <service> <short>Rsync in daemon mode</short> <description>Rsync in daemon mode works as a central server, in order to house centralized files and keep them synchronized.</description> <port protocol="tcp" port="873"/> <port protocol="udp" port="873"/> </service> And also: # dnf provides /usr/lib/firewalld/services/rsyncd.xml Using metadata from Wed Feb 25 12:01:25 2015 firewalld-0.3.13-2.fc22.noarch : A firewall daemon with D-Bus interface providing a dynamic firewall Repo : @System So I can't tell you if this will work in your case and if there's some way within firewall-cmd to create these service files or not. Chris Murphy
On Wed, Feb 25, 2015 at 2:39 PM, Earl A Ramirez <earlaramirez at gmail.com> wrote:> On Wed, 2015-02-25 at 16:33 -0500, m.roth at 5-cent.us wrote: >> Chris Murphy wrote: >> > firewall-cmd --add-service=rsyncd >> > >> firewall-cmd --add-service=rsyncd >> Error: INVALID_SERVICE: rsyncd >> >> Is there another place that there needs to be an rsyncd service file, >> whatever it's supposed to be named, *other* than where systemd wants it? >> >> mark >> > You can also specify the port > firewall-cmd --permanent --add-port=<rsync_port>/tcpFor what it's worth, anytime --permanent is used, the change is not dynamic, firewalld needs to be restarted. So instead, do the command twice, once with and once without --permanent. The order doesn't matter. -- Chris Murphy
Chris Murphy wrote:> I'm on Fedora 22 Server which has this already: > > # cat /usr/lib/firewalld/services/rsyncd.xml > <?xml version="1.0" encoding="utf-8"?> > <service> > <short>Rsync in daemon mode</short> > <description>Rsync in daemon mode works as a central server, in > order to house centralized files and keep them > synchronized.</description> > <port protocol="tcp" port="873"/> > <port protocol="udp" port="873"/> > </service> > > And also: > # dnf provides /usr/lib/firewalld/services/rsyncd.xml > Using metadata from Wed Feb 25 12:01:25 2015 > firewalld-0.3.13-2.fc22.noarch : A firewall daemon with D-Bus > interface providing a dynamic firewall > Repo : @System > > > So I can't tell you if this will work in your case and if there's some > way within firewall-cmd to create these service files or not.Ok, *that's* the missing file. I looked in both /etc/firewalld/services and /usr/lib/firewalld/services, and there's no rsyncd in either. So, is this a CentOS bug, or upstream's problem? mark