From 600f7396ad3abad6268dbc8cedbe1f2f45e5cb0f Mon Sep 17 00:00:00 2001
From: Zenghui Shi <zshi@redhat.com>
Date: Wed, 8 Feb 2023 08:17:33 +0800
Subject: [PATCH] Add mdns service in firewalld

multicast dns query will be rejected by firewalld if not enabled

Related-Issue: https://issues.redhat.com/browse/OCPBUGS-6862

Signed-off-by: Zenghui Shi <zshi@redhat.com>
---
 docs/howto_firewall.md                 | 1 +
 scripts/devenv-builder/configure-vm.sh | 1 +
 2 files changed, 2 insertions(+)

diff --git a/docs/howto_firewall.md b/docs/howto_firewall.md
index 623b27d520..6537e18ce9 100644
--- a/docs/howto_firewall.md
+++ b/docs/howto_firewall.md
@@ -32,6 +32,7 @@ sudo systemctl enable firewalld --now
 # Mandatory settings
 sudo firewall-cmd --permanent --zone=trusted --add-source=10.42.0.0/16 
 sudo firewall-cmd --permanent --zone=trusted --add-source=169.254.169.1
+sudo firewall-cmd --permanent --add-service=mdns
 sudo firewall-cmd --reload
 # Optional settings
 sudo firewall-cmd --permanent --zone=public --add-port=80/tcp
diff --git a/scripts/devenv-builder/configure-vm.sh b/scripts/devenv-builder/configure-vm.sh
index 7742d8b917..4a5043f40b 100644
--- a/scripts/devenv-builder/configure-vm.sh
+++ b/scripts/devenv-builder/configure-vm.sh
@@ -131,6 +131,7 @@ if [ $BUILD_AND_INSTALL = true ] ; then
     sudo systemctl enable firewalld --now
     sudo firewall-cmd --permanent --zone=trusted --add-source=10.42.0.0/16
     sudo firewall-cmd --permanent --zone=trusted --add-source=169.254.169.1
+    sudo firewall-cmd --permanent --add-service=mdns
     sudo firewall-cmd --reload
 
     # Run MicroShift Executable > Configuring MicroShift