Qrouterd is running unconfined
We need to add a policy to it. Maybe we can simply reuse qpid policy from RHEL with few changes. There is an option to make this a work item for RHEL platform team, but in any case we need to add ports 5671-5672 into qrouterd policy since these are unstandard AMQP port numbers we use both on Foreman and Proxy.
#2 Updated by Jerone Young almost 3 years ago
To add. I created a policy for qrouterd that isn't fully tested by might help get this going. It was created for capsule servers.
Doesn't look like the qpidd policy can be reused for this case.
This has mainly just been tested with Capsule servers.
Though it does need network ports:
5646 & 5647
For a capsule server.
I've attached what I did as mores an example that can help get things going.