dc1466eeca
as described in lorax documentation, we need to support raw ports/protocols and services as defined by firewalld: https://weldr.io/lorax/lorax-composer.html#customizations-firewall
34 lines
827 B
JSON
34 lines
827 B
JSON
{
|
|
"name": "Example Image",
|
|
"stages": [
|
|
{
|
|
"name": "org.osbuild.dnf",
|
|
"options": {
|
|
"releasever": "30",
|
|
"repos": {
|
|
"fedora": {
|
|
"name": "Fedora",
|
|
"metalink": "https://mirrors.fedoraproject.org/metalink?repo=fedora-$releasever&arch=$basearch",
|
|
"gpgkey": "file:///etc/pki/rpm-gpg/RPM-GPG-KEY-fedora-$releasever-$basearch"
|
|
}
|
|
},
|
|
"packages": ["@Core", "firewalld"]
|
|
}
|
|
},
|
|
{
|
|
"name": "org.osbuild.firewall",
|
|
"options": {
|
|
"ports": ["53:tcp", "88:udp"],
|
|
"enabled_services": ["http", "ftp"],
|
|
"disabled_services": ["telnet"]
|
|
}
|
|
}
|
|
],
|
|
"assembler": {
|
|
"name": "org.osbuild.tar",
|
|
"options": {
|
|
"filename": "firewall-output.tar.xz",
|
|
"compression": "xz"
|
|
}
|
|
}
|
|
}
|