From Fedora Project Wiki

Line 6: Line 6:


Check your /var/log/audit/audit.log for selinux denial.
Check your /var/log/audit/audit.log for selinux denial.
ausearch -m avc
or
  ausearch -ts today -m avc
  ausearch -ts today -m avc
or
or

Revision as of 10:38, 11 December 2012

Description

This is the test case to check if firewalld is not caused any AVC denial.

How to test

Check your /var/log/audit/audit.log for selinux denial.

ausearch -m avc

or

ausearch -ts today -m avc

or

grep den /var/log/audit/audit.log

Report results

  1. No AVC errors.
  2. In case there are some errors like bellow, please file the bug to component selinux-policy or paste link with audit.log
     type=AVC msg=audit(1355151140.473:243): avc:  denied  { create } for  pid=7236 comm="firewalld" ....