Install Rudder Root server on RHEL-like systems

Table of Contents

Add the Rudder packages repository
Install your Rudder Root Server

Add the Rudder packages repository

Run the following command as root:

version=$(grep "release [0-9]" /etc/redhat-release | sed "s/^.*release \([0-9]\).*$/\1/")
echo "[Rudder_3.0]
name=Rudder 3.0 EL repository
baseurl=http://www.rudder-project.org/rpm-3.0/RHEL_${version}/
gpgcheck=1
gpgkey=http://www.rudder-project.org/rpm-3.0/RHEL_${version}/repodata/repomd.xml.key" > /etc/yum.repos.d/rudder.repo

Install your Rudder Root Server

To begin the installation, you should simply install the rudder-server-root metapackage, which will install the required components:

yum install rudder-server-root

On Red Hat-like systems, a firewall setup is enabled by default, and would need to be adjusted for Rudder to operate properly. You have to allow all the flows described in the Network section.

	Warning
Rudder server doesn’t support SELinux yet (see http://www.rudder-project.org/redmine/issues/2882), so you should set it to be permissive with these commands: sed -i "s%^\sSELINUX=.%SELINUX=disabled%" /etc/sysconfig/selinux setenforce 0

Warning

Rudder server doesn’t support SELinux yet (see http://www.rudder-project.org/redmine/issues/2882), so you should set it to be permissive with these commands:

sed -i "s%^\s*SELINUX=.*%SELINUX=disabled%" /etc/sysconfig/selinux
setenforce 0

	Tip
On EL6, the /etc/sysconfig/iptables file configures the firewall: *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT # Allow SSH access (Maintenance) -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT # Allow HTTPS access (Rudder) -A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT The important line to have access to the Web interface being: # Allow HTTPS access (Rudder) -A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

Tip

On EL6, the /etc/sysconfig/iptables file configures the firewall:

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
# Allow SSH access (Maintenance)
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
# Allow HTTPS access (Rudder)
-A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT

The important line to have access to the Web interface being:

# Allow HTTPS access (Rudder)
-A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

	Tip
On EL7, the default firewall is firewalld, and you can enable HTTP/S access by running firewall-cmd --permanent --zone=public --add-port=443/tcp

Tip

On EL7, the default firewall is firewalld, and you can enable HTTP/S access by running

firewall-cmd --permanent --zone=public --add-port=443/tcp

Now jump to the next section to configure your server.

Prev	Up	Next
Install Rudder Root server on SLES	Home	Initial configuration of your Rudder Root Server

Rudder 3.0 - User ManualInstall Rudder Server