Skip to content

Commit b0a25f9

Browse files
prmerger-automator[bot]prmerger-automator[bot]
authored
Merge pull request #263821 from dennispadia/dp-changes
Changes to firewall-cmd commands
2 parents 2f561ac + 2c2a509 commit b0a25f9

File tree

3 files changed

+8
-101
lines changed

3 files changed

+8
-101
lines changed

articles/sap/workloads/sap-hana-high-availability-rhel.md

Lines changed: 4 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ ms.subservice: sap-vm-workloads
99
ms.topic: article
1010
ms.workload: infrastructure
1111
ms.custom: devx-track-python
12-
ms.date: 01/17/2024
12+
ms.date: 01/22/2024
1313
ms.author: radeltch
1414
---
1515
# High availability of SAP HANA on Azure VMs on Red Hat Enterprise Linux
@@ -281,22 +281,9 @@ The steps in this section use the following prefixes:
281281
Create firewall rules to allow HANA System Replication and client traffic. The required ports are listed on [TCP/IP Ports of All SAP Products](https://help.sap.com/viewer/ports). The following commands are just an example to allow HANA 2.0 System Replication and client traffic to database SYSTEMDB, HN1, and NW1.
282282

283283
```bash
284-
sudo firewall-cmd --zone=public --add-port=40302/tcp --permanent
285-
sudo firewall-cmd --zone=public --add-port=40302/tcp
286-
sudo firewall-cmd --zone=public --add-port=40301/tcp --permanent
287-
sudo firewall-cmd --zone=public --add-port=40301/tcp
288-
sudo firewall-cmd --zone=public --add-port=40307/tcp --permanent
289-
sudo firewall-cmd --zone=public --add-port=40307/tcp
290-
sudo firewall-cmd --zone=public --add-port=40303/tcp --permanent
291-
sudo firewall-cmd --zone=public --add-port=40303/tcp
292-
sudo firewall-cmd --zone=public --add-port=40340/tcp --permanent
293-
sudo firewall-cmd --zone=public --add-port=40340/tcp
294-
sudo firewall-cmd --zone=public --add-port=30340/tcp --permanent
295-
sudo firewall-cmd --zone=public --add-port=30340/tcp
296-
sudo firewall-cmd --zone=public --add-port=30341/tcp --permanent
297-
sudo firewall-cmd --zone=public --add-port=30341/tcp
298-
sudo firewall-cmd --zone=public --add-port=30342/tcp --permanent
299-
sudo firewall-cmd --zone=public --add-port=30342/tcp
284+
sudo firewall-cmd --zone=public --add-port={40302,40301,40307,40303,40340,30340,30341,30342}/tcp --permanent
285+
sudo firewall-cmd --zone=public --add-port={40302,40301,40307,40303,40340,30340,30341,30342}/tcp
286+
300287
```
301288

302289
1. **[1]** Create the tenant database.

articles/sap/workloads/sap-hana-high-availability-scale-out-hsr-rhel.md

Lines changed: 2 additions & 42 deletions
Original file line numberDiff line numberDiff line change
@@ -782,48 +782,8 @@ The following steps get you set up for system replication:
782782
783783
```bash
784784
# Execute as root
785-
sudo firewall-cmd --zone=public --add-port=30301/tcp --permanent
786-
sudo firewall-cmd --zone=public --add-port=30301/tcp
787-
sudo firewall-cmd --zone=public --add-port=30303/tcp --permanent
788-
sudo firewall-cmd --zone=public --add-port=30303/tcp
789-
sudo firewall-cmd --zone=public --add-port=30306/tcp --permanent
790-
sudo firewall-cmd --zone=public --add-port=30306/tcp
791-
sudo firewall-cmd --zone=public --add-port=30307/tcp --permanent
792-
sudo firewall-cmd --zone=public --add-port=30307/tcp
793-
sudo firewall-cmd --zone=public --add-port=30313/tcp --permanent
794-
sudo firewall-cmd --zone=public --add-port=30313/tcp
795-
sudo firewall-cmd --zone=public --add-port=30315/tcp --permanent
796-
sudo firewall-cmd --zone=public --add-port=30315/tcp
797-
sudo firewall-cmd --zone=public --add-port=30317/tcp --permanent
798-
sudo firewall-cmd --zone=public --add-port=30317/tcp
799-
sudo firewall-cmd --zone=public --add-port=30340/tcp --permanent
800-
sudo firewall-cmd --zone=public --add-port=30340/tcp
801-
sudo firewall-cmd --zone=public --add-port=30341/tcp --permanent
802-
sudo firewall-cmd --zone=public --add-port=30341/tcp
803-
sudo firewall-cmd --zone=public --add-port=30342/tcp --permanent
804-
sudo firewall-cmd --zone=public --add-port=30342/tcp
805-
sudo firewall-cmd --zone=public --add-port=1128/tcp --permanent
806-
sudo firewall-cmd --zone=public --add-port=1128/tcp
807-
sudo firewall-cmd --zone=public --add-port=1129/tcp --permanent
808-
sudo firewall-cmd --zone=public --add-port=1129/tcp
809-
sudo firewall-cmd --zone=public --add-port=40302/tcp --permanent
810-
sudo firewall-cmd --zone=public --add-port=40302/tcp
811-
sudo firewall-cmd --zone=public --add-port=40301/tcp --permanent
812-
sudo firewall-cmd --zone=public --add-port=40301/tcp
813-
sudo firewall-cmd --zone=public --add-port=40307/tcp --permanent
814-
sudo firewall-cmd --zone=public --add-port=40307/tcp
815-
sudo firewall-cmd --zone=public --add-port=40303/tcp --permanent
816-
sudo firewall-cmd --zone=public --add-port=40303/tcp
817-
sudo firewall-cmd --zone=public --add-port=40340/tcp --permanent
818-
sudo firewall-cmd --zone=public --add-port=40340/tcp
819-
sudo firewall-cmd --zone=public --add-port=50313/tcp --permanent
820-
sudo firewall-cmd --zone=public --add-port=50313/tcp
821-
sudo firewall-cmd --zone=public --add-port=50314/tcp --permanent
822-
sudo firewall-cmd --zone=public --add-port=50314/tcp
823-
sudo firewall-cmd --zone=public --add-port=30310/tcp --permanent
824-
sudo firewall-cmd --zone=public --add-port=30310/tcp
825-
sudo firewall-cmd --zone=public --add-port=30302/tcp --permanent
826-
sudo firewall-cmd --zone=public --add-port=30302/tcp
785+
sudo firewall-cmd --zone=public --add-port={30301,30303,30306,30307,30313,30315,30317,30340,30341,30342,1128,1129,40302,40301,40307,40303,40340,50313,50314,30310,30302}/tcp --permanent
786+
sudo firewall-cmd --zone=public --add-port={30301,30303,30306,30307,30313,30315,30317,30340,30341,30342,1128,1129,40302,40301,40307,40303,40340,50313,50314,30310,30302}/tcp
827787
```
828788
829789
## Create a Pacemaker cluster

articles/sap/workloads/sap-hana-scale-out-standby-netapp-files-rhel.md

Lines changed: 2 additions & 42 deletions
Original file line numberDiff line numberDiff line change
@@ -611,48 +611,8 @@ In this example for deploying SAP HANA in scale-out configuration with standby n
611611
612612
<pre><code>
613613
# Execute as root
614-
sudo firewall-cmd --zone=public --add-port=30301/tcp --permanent
615-
sudo firewall-cmd --zone=public --add-port=30301/tcp
616-
sudo firewall-cmd --zone=public --add-port=30303/tcp --permanent
617-
sudo firewall-cmd --zone=public --add-port=30303/tcp
618-
sudo firewall-cmd --zone=public --add-port=30306/tcp --permanent
619-
sudo firewall-cmd --zone=public --add-port=30306/tcp
620-
sudo firewall-cmd --zone=public --add-port=30307/tcp --permanent
621-
sudo firewall-cmd --zone=public --add-port=30307/tcp
622-
sudo firewall-cmd --zone=public --add-port=30313/tcp --permanent
623-
sudo firewall-cmd --zone=public --add-port=30313/tcp
624-
sudo firewall-cmd --zone=public --add-port=30315/tcp --permanent
625-
sudo firewall-cmd --zone=public --add-port=30315/tcp
626-
sudo firewall-cmd --zone=public --add-port=30317/tcp --permanent
627-
sudo firewall-cmd --zone=public --add-port=30317/tcp
628-
sudo firewall-cmd --zone=public --add-port=30340/tcp --permanent
629-
sudo firewall-cmd --zone=public --add-port=30340/tcp
630-
sudo firewall-cmd --zone=public --add-port=30341/tcp --permanent
631-
sudo firewall-cmd --zone=public --add-port=30341/tcp
632-
sudo firewall-cmd --zone=public --add-port=30342/tcp --permanent
633-
sudo firewall-cmd --zone=public --add-port=30342/tcp
634-
sudo firewall-cmd --zone=public --add-port=1128/tcp --permanent
635-
sudo firewall-cmd --zone=public --add-port=1128/tcp
636-
sudo firewall-cmd --zone=public --add-port=1129/tcp --permanent
637-
sudo firewall-cmd --zone=public --add-port=1129/tcp
638-
sudo firewall-cmd --zone=public --add-port=40302/tcp --permanent
639-
sudo firewall-cmd --zone=public --add-port=40302/tcp
640-
sudo firewall-cmd --zone=public --add-port=40301/tcp --permanent
641-
sudo firewall-cmd --zone=public --add-port=40301/tcp
642-
sudo firewall-cmd --zone=public --add-port=40307/tcp --permanent
643-
sudo firewall-cmd --zone=public --add-port=40307/tcp
644-
sudo firewall-cmd --zone=public --add-port=40303/tcp --permanent
645-
sudo firewall-cmd --zone=public --add-port=40303/tcp
646-
sudo firewall-cmd --zone=public --add-port=40340/tcp --permanent
647-
sudo firewall-cmd --zone=public --add-port=40340/tcp
648-
sudo firewall-cmd --zone=public --add-port=50313/tcp --permanent
649-
sudo firewall-cmd --zone=public --add-port=50313/tcp
650-
sudo firewall-cmd --zone=public --add-port=50314/tcp --permanent
651-
sudo firewall-cmd --zone=public --add-port=50314/tcp
652-
sudo firewall-cmd --zone=public --add-port=30310/tcp --permanent
653-
sudo firewall-cmd --zone=public --add-port=30310/tcp
654-
sudo firewall-cmd --zone=public --add-port=30302/tcp --permanent
655-
sudo firewall-cmd --zone=public --add-port=30302/tcp
614+
sudo firewall-cmd --zone=public --add-port={30301,30303,30306,30307,30313,30315,30317,30340,30341,30342,1128,1129,40302,40301,40307,40303,40340,50313,50314,30310,30302}/tcp --permanent
615+
sudo firewall-cmd --zone=public --add-port={30301,30303,30306,30307,30313,30315,30317,30340,30341,30342,1128,1129,40302,40301,40307,40303,40340,50313,50314,30310,30302}/tcp
656616
</code></pre>
657617

658618
- Start HANA

0 commit comments

Comments
 (0)