Update create server process to not add port knocking if Docker to be added later #427

jpmckinney · 2023-05-12T22:48:11Z

Right now we run onboarding and core first, which runs the firewall script. The firewall script checks for command -v docker, which will fail. It will then proceed to implement port knocking. https://ocdsdeploy.readthedocs.io/en/latest/deploy/create_server.html#apply-core-changes

We can either:

Check for either command -v docker or a non-empty DOCKER variable (e.g. add DOCKER to the firewall-settings.local template). That way, we can add a step to the documentation to set DOCKER, if appropriate.
Document how to reverse the firewall script. I did this by flushing iptables, adding port 22, deploying, and restarting the server. If that's it, we can document the steps more explicitly.

The text was updated successfully, but these errors were encountered:

jpmckinney · 2023-05-15T13:47:36Z

From email discussion: we can instead document how to reset the firewall at the appropriate time.

jpmckinney · 2023-06-10T00:56:38Z

Fixed by #418.

jpmckinney added documentation Improvements or additions to documentation docker labels May 17, 2023

jpmckinney added this to the Medium priority milestone May 26, 2023

jpmckinney mentioned this issue May 26, 2023

Rebuild Kingfisher server #402

Closed

11 tasks

ghost mentioned this issue Jun 7, 2023

Kingfisher Process Docker app deploy #418

Merged

12 tasks

jpmckinney closed this as completed Jun 10, 2023

Provide feedback