Difference between pages "User:Pytony" and "Package:Firewalld"

From Funtoo
(Difference between pages)
Jump to navigation Jump to search
 
m (more details)
 
Line 1: Line 1:
{{Person
{{Ebuild
|Geoloc=48.123028496893525, -1.671895980834961
|Summary=A firewall daemon with D-BUS interface providing a dynamic firewall
|Location name=Rennes, Bretagne, France
|CatPkg=net-firewall/firewalld
|Full name=Antoine Pinsard
|Homepage=https://fedorahosted.org/firewalld/
|Email=antoine.pinsard@gmail.com
|Nick=pytony
}}
}}
Firewalld is from our fedora friends.  Firewalld comes with a gui if the use flag is activated for it.  Firewalld is a daemon that is on top of iptables, ebtables, & nftables.  Firewalld inserts rules dynamically with out having to restart the kernel layer firewalls, and has interfaces to insert manual iptables, ip6tables, ebtables, and nftables rules.  {{package|app-admin/sshguard}} can be used along side firewalld to dynamically block attackers.  Firewalld is very tightly integrated with {{package|net-misc/networkmanager}}.


== About Me ==
{{warning|firewalld-0.2.x is very buggy under gentoo & funtoo, the init process refuses to stop among other things.  it's really bad, pre alpha quality.  go to nftables, or iptables now.  or use the firewalld-0.3.x series.}}


I am a 23 years old French developer. I am currently working as lead developer for a web start-up called ''Aladom'' (home services sector) in Rennes (Brittany, France). I started developing websites at the age of 11, which, bit by bit, led me to programming and GNU/Linux. I moved to Gentoo in 2010 and then Funtoo about three years later, in order to become the master of my computer and not the opposite. I am especially enthusiast about getting rid of features I don't need/use.
== {{package|net-firewall/nftables}} ==
== {{package|net-firewall/iptables}} ==


== How I met <del>your mother</del> Funtoo? ==
=== Installation ===
If you would like an application to configure firewalld, set the gui use flag.
{{console|body=###i## emerge net-firewall/firewalld}}


I don't remember.
=== init ===
{{console|body=###i## rc-update add consolekit
###i## rc-update add dbus
###i## rc-update add iptables
###i## rc-update add ip6tables
###i## rc-update add ebtables
###i## rc-update add nftables
###i## rc-update add firewalld
###i## rc}}


== Why I stick to Funtoo? ==
{{note|you may need to run rc-service {ip,eb,nf}tables save to enable these services to start}}


In my childhood as a wee developer, I moved from distro to distro by curiosity, without understanding, fundamentally, the difference between them. This is the day I moved to Gentoo that I had a click. Well... the day... I must say the first time I booted on Gentoo Install CD, it was like "OK... Where are fancy windows and OK buttons... Am I really supposed to type some text here? Hmm... looks like this CD is buggy, let's try another distro.". But eventually I came to it again, and went through the famous handbook. I remember, It took the night to compile Gnome 3 and the nearly 200 "dependencies" and I had to wait until the early morning to get my fancy interface. A month later I had the feeling I had learn so much (and totally screwed up my system with my newbies commands) I had to reinstall Gentoo, and this time decided to build my own kernel thanks to kernel-seeds.org. Miraculously, it worked. Well... actually, I chose vanilla-sources, and as a total ignorant of what "vanilla" meant, I thought it would be a good idea to turn on {{c|USE<nowiki>=</nowiki>vanilla}} in {{c|/etc/make.conf}} to optimize packages for my kernel... No need to tell you it did not take a month to screw up my system. So I tried again, I loved it.
=== Binaries ===
;firewall-applet  (gui systray icon)
;firewall-config  (gui configuration menus)
;firewall-offline-cmd -h  (many command line options
;firewall-cmd -h  (command line back end to firewall-config)
;firewalld  (command line firewall daemon control)


All of this is funny but this does not tell us why I moved to Funtoo and will stick to it.
=== gui ===
If the gui is merged in, to load it:
{{console|body=###i## firewall-applet}}


== My Projects ==
=== External Resources ===
 
* https://fedoraproject.org/wiki/FirewallD
* [https://github.com/apinsard/chuse chuse] - Portage tool to change USE flags and keep history of changes done
{{EbuildFooter}}
* [https://github.com/apinsard/Sapher-BT Sapher-BT] - A tiny bug tracker I developed to fit my needs as lead dev at Aladom
* [https://github.com/apinsard/Pi-Flavor Pi-Flavor] - OS from scratch in ARMv6 assembly for Raspberry Pi (sounds cool said like this, but actually it just blinks the ACT LED for now)
* [https://github.com/apinsard/mycfg-vim mycfg-vim] - My Vim configuration (If you want to get inspired or suggest me some stuff)
* [https://github.com/apinsard/mycfg-awesome mycfg-awesome] - My Awesome WM configuration (If you want to get inspired or suggest me some stuff)
* [https://github.com/apinsard/prettress-sm prettress-sm] - The project for which I actually only wrote the README
 
== Around the web ==
 
{{#widget:LinkedIn
|profile=http://www.linkedin.com/in/apinsard
|name=Antoine Pinsard
|norelated}}

Revision as of 03:16, May 7, 2015

Firewalld

   Tip

We welcome improvements to this page. To edit this page, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

Firewalld is from our fedora friends. Firewalld comes with a gui if the use flag is activated for it. Firewalld is a daemon that is on top of iptables, ebtables, & nftables. Firewalld inserts rules dynamically with out having to restart the kernel layer firewalls, and has interfaces to insert manual iptables, ip6tables, ebtables, and nftables rules. app-admin/sshguard can be used along side firewalld to dynamically block attackers. Firewalld is very tightly integrated with net-misc/networkmanager.

   Warning

firewalld-0.2.x is very buggy under gentoo & funtoo, the init process refuses to stop among other things. it's really bad, pre alpha quality. go to nftables, or iptables now. or use the firewalld-0.3.x series.

net-firewall/nftables

net-firewall/iptables

Installation

If you would like an application to configure firewalld, set the gui use flag. 

root # emerge net-firewall/firewalld

init

root # rc-update add consolekit
root # rc-update add dbus
root # rc-update add iptables
root # rc-update add ip6tables
root # rc-update add ebtables
root # rc-update add nftables
root # rc-update add firewalld
root # rc
   Note

you may need to run rc-service {ip,eb,nf}tables save to enable these services to start

Binaries

firewall-applet (gui systray icon)
firewall-config (gui configuration menus)
firewall-offline-cmd -h (many command line options
firewall-cmd -h (command line back end to firewall-config)
firewalld (command line firewall daemon control)

gui

If the gui is merged in, to load it: 

root # firewall-applet

External Resources


Retrieved from "https://www.funtoo.org/index.php?title=User:Pytony&oldid=9846"