it-team/lmn-client
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Restart libvirtd after firewalld.service restart

Browse source 
Starting libvirtd.service provides iptable rules for NATed network virbr0.
When starting firewalld.service after libvirtd, these rules will be
overwritten. So NAT will no longer work. Restart of libvirtd fixes the
rules again.
This commit is contained in:
Raphael Dannecker 2025-03-18 12:45:46 +01:00
parent 4b982205ba
commit 43157dd810
1 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
roles/lmn_fvs/files/pam-exec.sh
View file

@ -5,6 +5,12 @@
if [[ "${PAM_USER}" =~ -exam$ ]]; then if [[ "${PAM_USER}" =~ -exam$ ]]; then
systemctl start firewalld.service systemctl start firewalld.service
if systemctl is-enabled --quiet libvirtd.service; then
systemctl restart libvirtd.service
fi
elif ! (users | grep -q -- "-exam"); then elif ! (users | grep -q -- "-exam"); then
systemctl stop firewalld.service systemctl stop firewalld.service
if systemctl is-enabled --quiet libvirtd.service; then
systemctl restart libvirtd.service
fi
fi fi