added check for `--skip-firewalld` to section on adding

author Michaela Lang <milang@redhat.com>

Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)

committer Teoman ONAY <tonay@ibm.com>

Thu, 16 May 2024 13:37:29 +0000 (15:37 +0200)
author Michaela Lang <milang@redhat.com>
Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)
committer Teoman ONAY <tonay@ibm.com>
Thu, 16 May 2024 13:37:29 +0000 (15:37 +0200)
diff --git a/src/cephadm/cephadm.py b/src/cephadm/cephadm.py

index c718106400f192ed42064f2eded12e7d177e5966..87f46a2b59abac21c442c3f23b36019cd43516b3 100755 (executable)
--- a/src/cephadm/cephadm.py
+++ b/src/cephadm/cephadm.py
@@ -3976,10 +3976,11 @@ def deploy_daemon(ctx: CephadmContext, fsid: str, daemon_type: str,
      update_firewalld(ctx, daemon_type)
  
      # Open ports explicitly required for the daemon
-    if endpoints:
-        fw = Firewalld(ctx)
-        fw.open_ports([e.port for e in endpoints] + fw.external_ports.get(daemon_type, []))
-        fw.apply_rules()
+    if not ('skip_firewalld' in ctx and ctx.skip_firewalld):
+        if endpoints:
+            fw = Firewalld(ctx)
+            fw.open_ports([e.port for e in endpoints] + fw.external_ports.get(daemon_type, []))
+            fw.apply_rules()
  
      # If this was a reconfig and the daemon is not a Ceph daemon, restart it
      # so it can pick up potential changes to its configuration files
author	Michaela Lang <milang@redhat.com>
	Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)
committer	Teoman ONAY <tonay@ibm.com>
	Thu, 16 May 2024 13:37:29 +0000 (15:37 +0200)