Currently it looks like only Amazon Linux 2 is supported which requires epel from fedora.
I’m unable to install Pritunl on Amazon Linux 2023 because it does not support epel. Comparing Amazon Linux 2 and Amazon Linux 2023 - Amazon Linux 2023
Is it possible to add support for Amazon Linux 2023? Amazon Linux 2 support has been extended to June 2025, so this isn’t urgent.
An AmazonLinux 2023 build is now available in the unstable repository. This repository will provide
pkcs11-helper to allow installing without the EPEL repository. Only MongoDB 7 is available on AmazonLinux 2023. All AmazonLinux Pritunl packages do not include SELinux policies. These polices improve the security of the Pritunl web server and are only available on RHEL distributions. AmazonLinux has SELinux disabled by default. Below are the installation commands.
sudo tee /etc/yum.repos.d/pritunl.repo << EOF
sudo tee /etc/yum.repos.d/mongodb-org-7.0.repo << EOF
sudo dnf -y install pritunl mongodb-org wireguard-tools
sudo systemctl enable mongod pritunl
sudo systemctl start mongod pritunl
Oh cool! That’s good to know. Is there anywhere I can track the status of AL2023 becoming stable? And/or do you know what the timeline to stable might be?
From this page, it looks like Amazon Linux 2023 has SElinux enabled by default in permissive mode. Setting SELinux modes - Amazon Linux 2023
MongoDB wont be a problem since I’ll be using our Atlas cluster on 6.0.11.
I don’t have any planned date for when each package will move to stable, it shouldn’t be more than a week.
Permissive mode in SELinux is effectively disabled. Even if it were switched to enforcing the Pritunl SELinux policies are not included with the AmazonLinux package.
I don’t know much about SELinux actually, is there a reason the policies can’t be included now that Amazon Linux 2023 ships with it?
It’s unlikely the same polices will work without any issues due to the significant changes between AmazonLinux and the upstream RHEL distribution. There isn’t a significant enough user base who will enable SELinux on AmazonLinux to justify adding it. It requires a lot of testing and SELinux errors can be difficult to debug which creates a lot of support emails.