Security Hardening (non OCP install)

Edit online

After installing you can optionally complete this security hardening step. By default the docker and podman containers allow egress. You can run the script provided to stop all egress except on the specified ports. You may also configure additional egress restrictions or allowances by adding your own rules to the provided script

Executing the security hardening script

Edit online

Note: You must have root permissions to execute this script.

Go to the install location.

If you are using docker run this command:
```
cd scripts
sudo ./hardenSecurityDocker.sh
```
If you are using podman run this command:
```
cd scripts
sudo ./hardenSecurityPodman.sh
```

Egress will now only be allowed by the exceptions listed in the script.