Revision as of 05:58, May 7, 2015 by Oleg (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)


Source Repository:Repository:Gentoo Portage Tree

Summary: A firewall daemon with D-BUS interface providing a dynamic firewall

Use Flags

Builds and installs GUI configurator and GTK+ applet



Keychain 2.8.2 Released

Keychain 2.8.2, a maintenance and bug fix release, is now available.
2015-11-16 by Drobbins

Unfork Tree is Live!

The "unfork" tree is now merged into the main Funtoo Linux tree, and Funtoo Linux is now using shards for core packages, x11 (including media libraries), KDE, GNOME, python and perl.
2015-10-12 by Drobbins

OpenSSH 7 Disables DSA Keys By Default

Please be aware of this important change to avoid getting locked out of your Funtoo server.
2015-10-07 by Drobbins



We welcome improvements to this page. To edit this page, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

Firewalld is from our fedora friends. Firewalld comes with a gui if the use flag is activated for it. Firewalld is a daemon that is on top of iptables, ebtables, & nftables. Firewalld inserts rules dynamically with out having to restart the kernel layer firewalls, and has interfaces to insert manual iptables, ip6tables, ebtables, and nftables rules. Package:Sshguard can be used along side firewalld to dynamically block attackers. Firewalld is very tightly integrated with Package:NetworkManager.


firewalld-0.2.x is very buggy under gentoo & funtoo, the init process refuses to stop among other things. it's really bad, pre alpha quality. go to nftables, or iptables now. or use the firewalld-0.3.x series.




If you would like an application to configure firewalld, set the gui use flag.

# emerge net-firewall/firewalld


# rc-update add consolekit
# rc-update add dbus default
# rc-update add iptables default
# rc-update add ip6tables default
# rc-update add ebtables default
# rc-update add nftables default
# rc-update add firewalld default
# rc


you may need to run rc-service {ip,eb,nf}tables save to enable these services to start


firewall-applet (gui systray icon)
firewall-config (gui configuration menus)
firewall-offline-cmd -h (many command line options
firewall-cmd -h (command line back end to firewall-config)
firewalld (command line firewall daemon control)


If the gui is merged in, to load it:

# firewall-applet

External Resources