Update

2e83787a · wojiushixiaobai · 43d9f994 · 2e83787a · 2e83787a · 2e83787a
Commit 2e83787a authored Dec 18, 2018 by wojiushixiaobai
Show whitespace changes
Inline Side-by-side

Showing with 6 additions and 16 deletions

faq_windows_firewalld.jpg docs/_static/img/faq_windows_firewalld.jpg +0 -0

faq_rdp.rst docs/faq_rdp.rst +2 -1

setup_by_centos7.rst docs/setup_by_centos7.rst +4 -15

No files found.
--- a/docs/_static/img/faq_windows_firewalld.jpg
+++ b/docs/_static/img/faq_windows_firewalld.jpg
--- a/docs/faq_rdp.rst
+++ b/docs/faq_rdp.rst
@@ -17,7 +17,6 @@ RDP 协议资产连接错误排查思路

 .. code-block:: shell

-    注：连接 Windows 资产提示连接错误,您没有权限访问此连接,请按照此步骤解决
    # 如果终端不在线,请检查 Windows 组件是否已经正常运行

    # 如果重启后任然不在线,请重新注册 Windows 组件
@@ -50,6 +49,8 @@ RDP 协议资产连接错误排查思路
    # Windows 7/2008 启用 远程桌面(TCP-In)
    # Windows 8/10/2012 启用 远程桌面-用户模式(TCP-In)

+.. image:: _static/img/faq_windows_firewalld.jpg
+
 3. 登录要连接的windows资产,检查用户和IP信息(Windows目前还不支持推送,所以必须使用资产上面已存在的用户进行登录)

 .. code-block:: vim

--- a/docs/setup_by_centos7.rst
+++ b/docs/setup_by_centos7.rst
@@ -250,15 +250,14 @@ CentOS 7 安装文档
    $ curl -sSL https://get.daocloud.io/daotools/set_mirror.sh | sh -s http://f1361db2.m.daocloud.io
    $ systemctl restart docker

+    # 允许 容器ip 访问宿主 8080 端口,(容器的 ip 可以进入容器查看)
+    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.0/16" port protocol="tcp" port="8080" accept"
+    # 172.17.0.x 是docker容器默认的IP池, 这里偷懒直接授权ip段了, 可以根据实际情况单独授权IP
+
    # 注意,<Jumpserver_url> 请自行修改成 jumpserver 对外的访问地址,如 192.168.100.100:8080
    $ docker run --name jms_coco -d -p 2222:2222 -p 5000:5000 -e CORE_HOST=http://<Jumpserver_url> -e BOOTSTRAP_TOKEN=nwv4RdXpM82LtSvmV jumpserver/jms_coco:1.4.5
    $ docker run --name jms_guacamole -d -p 8081:8081 -e JUMPSERVER_SERVER=http://<Jumpserver_url> -e BOOTSTRAP_TOKEN=nwv4RdXpM82LtSvmV jumpserver/jms_guacamole:1.4.5

-    # 允许 容器ip 访问宿主 8080 端口,(容器的 ip 可以进入容器查看)
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.2" port protocol="tcp" port="8080" accept"
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.3" port protocol="tcp" port="8080" accept"
-    # 172.17.0.x 是docker容器默认的IP池
-
    $ firewall-cmd --reload
    $ docker restart jms_coco jms_guacamole

@@ -375,16 +374,6 @@ CentOS 7 安装文档
    $ docker run --name jms_guacamole02 -d -p 8083:8081 -e JUMPSERVER_SERVER=http://<Jumpserver_url> -e BOOTSTRAP_TOKEN=nwv4RdXpM82LtSvmV jumpserver/jms_guacamole:1.4.5
    ...

-    # 注意开放防火墙, ip 请根据实际情况修改
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.4" port protocol="tcp" port="8080" accept"
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.5" port protocol="tcp" port="8080" accept"
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.6" port protocol="tcp" port="8080" accept"
-    $ firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="172.17.0.7" port protocol="tcp" port="8080" accept"
-    ...
-
-    $ firewall-cmd --reload
-    $ docker restart jms_coco01 jms_coco02 jms_guacamole01 jms_guacamole02
-
    # nginx 代理设置
    $ vi /etc/nginx.conf
    user  nginx;