Re: [ansible-project] open firewall for http traffic SLES 15
496 views
Skip to first unread message
Message has been deleted
Dick Visser
Sep 3, 2019, 3:07:12 PM9/3/19
to ansible...@googlegroups.com
On Tue, 3 Sep 2019 at 20:43, Keith Mills <mills....@gmail.com> wrote:
>
> Hello All,
>
> I need to open firewall for http traffic for SLES 15 and I'm running into an error!
>
> Here is what I have:
>
> - name: open firewall for http traffic
> firewalld:
> service: http
> permanent: true
> immediate: true
> state: enabled
> when:
> (ansible_distribution|lower == "redhat" and ansible_distribution_major_version|int == 8) or
> (ansible_distribution|lower == "sles" and ansible_distribution_major_version == "15")
>
> Here is the error:
>
> fatal: [abls15ex]: FAILED! => {"changed": false, "msg": "Python Module not found: firewalld and its python module are required for this module, version 0.2.11 or newer required (0.3.9 or newer for offline operations)"}
>
> Can anyone help!?
sudo pip install firewall
then run the playbook again
--
Dick Visser
Trust & Identity Service Operations Manager
GÉANT
>
> Hello All,
>
> I need to open firewall for http traffic for SLES 15 and I'm running into an error!
>
> Here is what I have:
>
> - name: open firewall for http traffic
> firewalld:
> service: http
> permanent: true
> immediate: true
> state: enabled
> when:
> (ansible_distribution|lower == "redhat" and ansible_distribution_major_version|int == 8) or
> (ansible_distribution|lower == "sles" and ansible_distribution_major_version == "15")
>
> Here is the error:
>
> fatal: [abls15ex]: FAILED! => {"changed": false, "msg": "Python Module not found: firewalld and its python module are required for this module, version 0.2.11 or newer required (0.3.9 or newer for offline operations)"}
>
> Can anyone help!?
sudo pip install firewall
then run the playbook again
--
Dick Visser
Trust & Identity Service Operations Manager
GÉANT
Message has been deleted
Dick Visser
Sep 3, 2019, 3:36:52 PM9/3/19
to ansible...@googlegroups.com
OK something else is off then.
I've just tried the same playbook on a vanilla SLES15 and after
enabling and starting firewalld it works straight away without errors.
Can you check if you have the correct package installed. It should
look like this:
sles15:/etc/zypp/repos.d # zypper info python3-firewall
Loading repository data...
Reading installed packages...
Information for package python3-firewall:
-----------------------------------------
Repository : @System
Name : python3-firewall
Version : 0.5.3-2.3
Arch : noarch
Vendor : SUSE LLC <https://www.suse.com/>
Support Level : unknown
Installed Size : 1.6 MiB
Installed : Yes (automatically)
Status : up-to-date
Source package : firewalld-0.5.3-2.3.src
Summary : Python3 bindings for FirewallD
Description :
The python3 bindings for firewalld.
On Tue, 3 Sep 2019 at 21:15, Keith Mills <mills....@gmail.com> wrote:
>
> Hello Dick,
>
> I ran that command and received this error:
>
> Collecting firewall
> WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=3, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=2, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=1, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=0, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> ERROR: Could not find a version that satisfies the requirement firewall (from versions: none)
> ERROR: No matching distribution found for firewall
>
>
>
> On Tuesday, September 3, 2019 at 2:07:12 PM UTC-5, Dick Visser wrote:
> --
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/a2fdcbfb-009e-46a2-9525-387f152b9544%40googlegroups.com.
I've just tried the same playbook on a vanilla SLES15 and after
enabling and starting firewalld it works straight away without errors.
Can you check if you have the correct package installed. It should
look like this:
sles15:/etc/zypp/repos.d # zypper info python3-firewall
Loading repository data...
Reading installed packages...
Information for package python3-firewall:
-----------------------------------------
Repository : @System
Name : python3-firewall
Version : 0.5.3-2.3
Arch : noarch
Vendor : SUSE LLC <https://www.suse.com/>
Support Level : unknown
Installed Size : 1.6 MiB
Installed : Yes (automatically)
Status : up-to-date
Source package : firewalld-0.5.3-2.3.src
Summary : Python3 bindings for FirewallD
Description :
The python3 bindings for firewalld.
On Tue, 3 Sep 2019 at 21:15, Keith Mills <mills....@gmail.com> wrote:
>
> Hello Dick,
>
> I ran that command and received this error:
>
> Collecting firewall
> WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=3, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=2, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=1, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> WARNING: Retrying (Retry(total=0, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)",)': /simple/firewall/
> ERROR: Could not find a version that satisfies the requirement firewall (from versions: none)
> ERROR: No matching distribution found for firewall
>
>
>
> On Tuesday, September 3, 2019 at 2:07:12 PM UTC-5, Dick Visser wrote:
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/a2fdcbfb-009e-46a2-9525-387f152b9544%40googlegroups.com.
Message has been deleted
Dick Visser
Sep 4, 2019, 4:28:47 AM9/4/19
to ansible...@googlegroups.com
That's a local system problem for you to solve.
On the plus side, whatever is causing this might also be causing your
ansible playbook failure.
Dick
On Tue, 3 Sep 2019 at 22:00, Keith Mills <mills....@gmail.com> wrote:
>
> I see this issue:
>
>
> systemctl status firewalld
> ● firewalld.service - firewalld - dynamic firewall daemon
> Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled)
> Active: failed (Result: exit-code) since Tue 2019-09-03 19:55:35 UTC; 1min 27s ago
> Docs: man:firewalld(1)
> Process: 26192 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=1/FAILURE)
> Main PID: 26192 (code=exited, status=1/FAILURE)
>
>
> Sep 03 19:55:35 abls15ex6401 systemd[1]: Starting firewalld - dynamic firewall daemon...
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Main process exited, code=exited, status=1/FAILURE
> Sep 03 19:55:35 abls15ex6401 systemd[1]: Failed to start firewalld - dynamic firewall daemon.
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Unit entered failed state.
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Failed with result 'exit-code'.
>
> How do I resolve this?
>> > To unsubscribe from this group and stop receiving emails from it, send an email to ansible...@googlegroups.com.
On the plus side, whatever is causing this might also be causing your
ansible playbook failure.
Dick
On Tue, 3 Sep 2019 at 22:00, Keith Mills <mills....@gmail.com> wrote:
>
> I see this issue:
>
>
> systemctl status firewalld
> ● firewalld.service - firewalld - dynamic firewall daemon
> Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled)
> Active: failed (Result: exit-code) since Tue 2019-09-03 19:55:35 UTC; 1min 27s ago
> Docs: man:firewalld(1)
> Process: 26192 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=1/FAILURE)
> Main PID: 26192 (code=exited, status=1/FAILURE)
>
>
> Sep 03 19:55:35 abls15ex6401 systemd[1]: Starting firewalld - dynamic firewall daemon...
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Main process exited, code=exited, status=1/FAILURE
> Sep 03 19:55:35 abls15ex6401 systemd[1]: Failed to start firewalld - dynamic firewall daemon.
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Unit entered failed state.
> Sep 03 19:55:35 abls15ex6401 systemd[1]: firewalld.service: Failed with result 'exit-code'.
>
> How do I resolve this?
>> > To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/a2fdcbfb-009e-46a2-9525-387f152b9544%40googlegroups.com.
>>
>>
>>
>> --
>> Dick Visser
>> Trust & Identity Service Operations Manager
>> GÉANT
>
> --
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/f2924000-2e6d-49b3-b0f6-7e137f270b24%40googlegroups.com.
>>
>>
>>
>> --
>> Dick Visser
>> Trust & Identity Service Operations Manager
>> GÉANT
>
> --
> You received this message because you are subscribed to the Google Groups "Ansible Project" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
Reply all
Reply to author
Forward
Message has been deleted
Message has been deleted
0 new messages