You may follow these procedures to disable shorewall on your head node.
First, run the following commands on your head node to prevent Bright from automatically restarting shorewall:
# cmsh
% device use master
% services
% set shorewall autostart no
% set shorewall6 autostart no
% commit
Next, stop and disable both shorewall services:
# systemctl stop shorewall
# chkconfig shorewall off
# systemctl stop shorewall6
# chkconfig shorewall6 off
Then, flush the iptables rules:
# iptables -F INPUT
# iptables -F FORWARD
# iptables -F OUTPUT
After that, you would set the default policy on each table to be ACCEPT:
# iptables -P INPUT ACCEPT
# iptables -P FORWARD ACCEPT
# iptables -P OUTPUT ACCEPT
Please note that performing these actions should not interfere with Bright’s management of your cluster.