Firewall Configuration: The port that will be used by the ICG for incoming connections must be open. By default, this is port 8443; for further information, see Network Ports Used.
Solution
We will define an SELinux policy in a file and install it with a script in the following.
Writing the SELinux Policy
Login to the machine that will host your ICG and go to a directory where your user is allowed to create files.
Open the text editor of your choice, e.g. vi, and create a file named icg.te
vi icg.te
BASH
Enter the following content into the file and save it as icg.te (in vi, the file is saved with :wq):
module icg 1.0;
require {
type init_t;
type user_home_t;
class file { execute execute_no_trans ioctl open read };
}
#============= init_t ==============
allow init_t user_home_t:file { execute execute_no_trans ioctl open read };
CODE
Installing the SELinux Policy
Create another file named icg sh; this will be the install script.
vi icg.sh
BASH
Enter the following content into the file and save it as icg.sh: