--- doc/build/centos7_install.frag	2019/12/02 21:58:24	1.2
+++ doc/build/centos7_install.frag	2021/03/13 20:43:28	1.5
@@ -89,9 +89,21 @@ Finish installing your server, reboot it
 </p>
 <h3>Firewall Configuration</h3>
 <p>
-LON-CAPA uses the traditional iptables package instead of the recent Firewalld, included for the
-first time with CentOS 7.  Accordingly, you should install iptables-services, disable firewalld,
-and enable iptables.
+Starting with LON-CAPA 2.11.3 you have the option of using either firewalld or iptables to
+manage the Firewall on your CentOS 7 server/VM, as both are compatible with LON-CAPA's
+port management.</p>
+<p>Enable access to standard web server ports (i.e., http and https) as follows, if
+using firewalld::</p>
+<pre>
+systemctl enable firewalld
+systemctl start firewalld
+firewall-cmd --zone=public --permanent --add-service=http
+firewall-cmd --zone=public --permanent --add-service=https
+firewall-cmd --reload
+</pre>
+<p>If you prefer to use the traditional iptables package instead of the default firewalld,
+you will need to install iptables-services, disable firewalld, enable iptables, and then
+use the system-config-firewall-tui tool to configure the Firewall.
 </p>
 <pre>
 yum install iptables-services
@@ -101,15 +113,12 @@ systemctl enable ip6tables
 systemctl stop firewalld
 systemctl start iptables
 systemctl start ip6tables
-yum install wget
-rpm --import http://install.loncapa.org/versions/centos/RPM-GPG-KEY-loncapa
-wget http://install.loncapa.org/versions/centos/7/system-config-firewall-tui-1.2.29-10.el7.noarch.rpm
-yum localinstall system-config-firewall-tui-1.2.29-10.el7.noarch.rpm
 </pre>
 <p>
-The system-config-firewall-tui tool should be used to configure the Firewall.
+Install the system-config-firewall-tui package and configure the Firewall.
 </p>
 <pre>
+yum install system-config-firewall-tui
 system-config-firewall-tui
 </pre>
 <ol>
@@ -122,7 +131,7 @@ system-config-firewall-tui
 
 <h2>4. <a name="upd">Update your system</a></h2>
 <p>
-Enable access to the EPEL repository
+If you are using 64-bit architecture enable access to the EPEL repository.  Execute:
 </p>
 <pre>
 yum install epel-release
@@ -137,15 +146,13 @@ yum update
 Reboot your system before continuing with the installation.
 </p>
 <p>
-Retrieve the centos7_loncapa_yum file from the LON-CAPA install site:
+Retrieve the centos7_loncapa_yum file from the LON-CAPA install site and install 
+using the following commands:
 </p>
 <pre>
+yum install wget
+rpm --import http://install.loncapa.org/versions/centos/RPM-GPG-KEY-loncapa
 wget http://install.loncapa.org/versions/centos/7/centos7_loncapa_yum.conf
-</pre>
-<p>
-Install the centos7_loncapa_yum.conf
-</p>
-<pre>
 mv /etc/yum.conf /etc/yum.conf.backup
 cp centos7_loncapa_yum.conf /etc/yum.conf
 yum update
@@ -157,12 +164,12 @@ Verify the required repositories are ena
 yum repolist enabled
 </pre>
 <p>
-The list of enabled repos should be as follows (where $basearch = x86_64 or i386):
+The list of enabled repos should be as follows (where $basearch = x86_64 or i386). The epel repo will be absent if you are using 32-bit architecture.
 </p>
 <table style="border: 0px; border-collapse: collapse;">
 <tr><th>repo id</th><th>repo name</th></tr>
 <tr><td>base/7/$basearch</td><td>CentOS-7 - Base<td></tr>
-<tr><td>epel/$basearch</td><td>Extra Packages for Enterprise Linux 7 - $basearch</td></tr>
+<tr><td>epel/x86_64</td><td>Extra Packages for Enterprise Linux 7 - x86_64</td></tr>
 <tr><td>extras/7/$basearch</td><td>CentOS-7 - Extras</td></tr>
 <tr><td>loncapa-updates-basearch/7/$basearch</td><td>CentOS 7 LON-CAPA $basearch Updates</td></tr>
 <tr><td>loncapa-updates-noarch/7</td><td>CentOS 7 LON-CAPA noarch Updates</td></tr>