added check for `--skip-firewalld` to section on adding

author Michaela Lang <milang@redhat.com>

Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)

committer Michaela Lang <milang@redhat.com>

Wed, 25 Oct 2023 05:40:04 +0000 (07:40 +0200)
author Michaela Lang <milang@redhat.com>
Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)
committer Michaela Lang <milang@redhat.com>
Wed, 25 Oct 2023 05:40:04 +0000 (07:40 +0200)
diff --git a/src/cephadm/cephadm.py b/src/cephadm/cephadm.py

index a64b0b49404dd8e9ebb453d946a0a8013c15ef56..d8a938c659ef8562c5fbaeaf37960867705fe478 100755 (executable)
--- a/src/cephadm/cephadm.py
+++ b/src/cephadm/cephadm.py
@@ -2976,10 +2976,11 @@ def deploy_daemon(
      update_firewalld(ctx, daemon_form_create(ctx, ident))
  
      # Open ports explicitly required for the daemon
-    if endpoints:
-        fw = Firewalld(ctx)
-        fw.open_ports([e.port for e in endpoints] + fw.external_ports.get(daemon_type, []))
-        fw.apply_rules()
+    if not ('skip_firewalld' in ctx and ctx.skip_firewalld):
+        if endpoints:
+            fw = Firewalld(ctx)
+            fw.open_ports([e.port for e in endpoints] + fw.external_ports.get(daemon_type, []))
+            fw.apply_rules()
  
      # If this was a reconfig and the daemon is not a Ceph daemon, restart it
      # so it can pick up potential changes to its configuration files
author	Michaela Lang <milang@redhat.com>
	Tue, 24 Oct 2023 11:24:44 +0000 (13:24 +0200)
committer	Michaela Lang <milang@redhat.com>
	Wed, 25 Oct 2023 05:40:04 +0000 (07:40 +0200)