summaryrefslogtreecommitdiff
path: root/examples/firewalld-dserver-port.sh.example
diff options
context:
space:
mode:
Diffstat (limited to 'examples/firewalld-dserver-port.sh.example')
-rw-r--r--examples/firewalld-dserver-port.sh.example21
1 files changed, 21 insertions, 0 deletions
diff --git a/examples/firewalld-dserver-port.sh.example b/examples/firewalld-dserver-port.sh.example
new file mode 100644
index 0000000..f10ce08
--- /dev/null
+++ b/examples/firewalld-dserver-port.sh.example
@@ -0,0 +1,21 @@
+#!/bin/bash
+# Allow inbound TCP to dserver (default port 2222) when firewalld is used.
+# Run once on the server as root, or fold into your config management.
+
+set -euo pipefail
+
+PORT="${DTAIL_FIREWALL_PORT:-2222}"
+
+if ! command -v firewall-cmd >/dev/null 2>&1; then
+ echo "firewall-cmd not found; skip or configure your firewall manually." >&2
+ exit 0
+fi
+
+if ! firewall-cmd --state >/dev/null 2>&1; then
+ echo "firewalld not running; nothing to do." >&2
+ exit 0
+fi
+
+firewall-cmd --permanent "--add-port=${PORT}/tcp"
+firewall-cmd --reload
+echo "Opened ${PORT}/tcp. Current ports: $(firewall-cmd --list-ports)"
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-10 06:17:36 +0000