Hello,
For a few days I’ve been trying to secure a virtualized Fog server using the firewall built into the Proxmox virtualizer.
I’ve allocated two ip addresses to the Fog server:
- a public one (00.00.00.00) for which I’ve left ports 22, 80 and 443 for Fog-client, which seems to work.
- a private one (192.168.10.112) which opens the ports needed for image capture and deployment. When the firewall on the internal network is deactivated, it works, but when I activate the rules, I get the error
Starting sshd: touch: cannot touch ‘/var/lock/sshd’ : No such file or directory.
I’ve modified the /etc/default/nfs-kernel-server file, to replace RPCMOUNTDOPTS=--manage-gids with RPCMOUNTDOPTS=-p 20048
There’s a subtlety that escapes me, can you take a look at the following firewall screenshot?
Axel.