Configuring the Installation Environment

Disabling SELinux

The SELinux security mechanism enabled by default on Linux prevents some ports on the container network from being enabled. As a result, services for virtualization scenarios cannot be deployed. This is the behavior of Linux itself, and Kunpeng BoostKit for Virtualization does not provide a solution to this issue. If you want to use SELinux in your own system, please find a solution by yourself.

We provide a method for quickly disabling SELinux. The SELinux configuration method provided in Kunpeng BoostKit for Virtualization is for reference only. You need to evaluate the method and bear related risks.

Disabling SELinux may cause security issues. If you do not plan to enable SELinux, it is recommended that an end-to-end solution be used to eliminate the risks caused by disabling SELinux. You shall bear the security risks by yourself. If you need to enable SELinux, configure fine-grained security rules based on actual SELinux issues to ensure system security.

Temporary solution:
```
setenforce 0
```

Permanent solution:
Change SELINUX=enforcing to SELINUX=permissive or disabled in the /etc/selinux/config file.
```
vim /etc/selinux/config
```

Disabling the Firewall

systemctl stop firewalld 
systemctl disable firewalld

Parent topic: Docker 19.03.10 Installation Guide (CentOS & openEuler)