On 06/22/2016 07:44 PM, Jonathan Lebon wrote: > ----- Original Message ----- >> Folks, >> >> Bringing this to atomic-devel because I'm not sure that it isn't an >> issue with centos Atomic ISOs as well. Also, I'm not quite sure where >> the rule is coming from. > > They come from the iptables package itself: > > http://pkgs.fedoraproject.org/cgit/rpms/iptables.git/tree/sysconfig_iptables > >> Where's the best place to fix this? > > This normally shouldn't be an issue since e.g. the > k8/contrib ansible playbooks insert rules at the top. That > said, if you're encountering issues, it might mean that > we're missing a few rules. I would file an issue there with > more details probably. >
Exposing services definitely doesn't work with the current set of rules. Interestingly, I have not run into this issue on AWS, so AWS mush replace some iptables rules or something. -- -- Josh Berkus Project Atomic Red Hat OSAS
