Difference between revisions of "Package:Firewalld"

m (more details)
m (more details)
Line 24: Line 24:
 
###i## rc-update add firewalld
 
###i## rc-update add firewalld
 
###i## rc}}
 
###i## rc}}
 +
 +
{{note|you may need to run rc-service {ip,eb,nf}tables save to enable these services to start}}
 +
 +
=== Binaries ===
 +
;firewall-applet  (gui systray icon)
 +
;firewall-config  (gui configuration menus)
 +
;firewall-offline-cmd -h  (many command line options
 +
;firewall-cmd -h  (command line back end to firewall-config)
 +
;firewalld  (command line firewall daemon control)
  
 
=== gui ===
 
=== gui ===

Revision as of 03:16, May 7, 2015

net-firewall/firewalld


Source Repository:Repository:Progress Overlay

https://fedorahosted.org/firewalld/

Summary: A firewall daemon with D-BUS interface providing a dynamic firewall


News

Drobbins

IP Space Migration Continues

All Funtoo user containers in the 8.28 IP space will be moving into our new IP space (172.97) over the next few days. If you have DNS set up -- be sure to watch your container and update to the new IP! container.host.funtoo.org DNS will be updated after the move.
2015-08-27 by Drobbins
Drobbins

Funtoo Hosting IP Move

Funtoo user containers with IPs in the 72.18.x.x range will be gradually migrating to new IP addresses this week. If you have DNS entries for your containers, please be aware that your DNS will need to be updated.
2015-08-11 by Drobbins
Drobbins

New ARM Stages

New ARM Stages, built with a new toolchain, are now hitting mirrors. Existing ARM users should re-install using these stages (dated Aug 3, 2015 or later,) rather than upgrade using emerge.
2015-08-06 by Drobbins
More...

Firewalld

Tip

We welcome improvements to this page. To edit this page, Create a Funtoo account. Then log in and then click here to edit this page. See our editing guidelines to becoming a wiki-editing pro.

Firewalld is from our fedora friends. Firewalld comes with a gui if the use flag is activated for it. Firewalld is a daemon that is on top of iptables, ebtables, & nftables. Firewalld inserts rules dynamically with out having to restart the kernel layer firewalls, and has interfaces to insert manual iptables, ip6tables, ebtables, and nftables rules. Package:Sshguard can be used along side firewalld to dynamically block attackers. Firewalld is very tightly integrated with Package:NetworkManager.

Warning

firewalld-0.2.x is very buggy under gentoo & funtoo, the init process refuses to stop among other things. it's really bad, pre alpha quality. go to nftables, or iptables now. or use the firewalld-0.3.x series.

Package:Nftables

Package:Iptables

Installation

If you would like an application to configure firewalld, set the gui use flag.

# emerge net-firewall/firewalld


init

# rc-update add consolekit
# rc-update add dbus
# rc-update add iptables
# rc-update add ip6tables
# rc-update add ebtables
# rc-update add nftables
# rc-update add firewalld
# rc


Note

you may need to run rc-service {ip,eb,nf}tables save to enable these services to start

Binaries

firewall-applet (gui systray icon)
firewall-config (gui configuration menus)
firewall-offline-cmd -h (many command line options
firewall-cmd -h (command line back end to firewall-config)
firewalld (command line firewall daemon control)

gui

If the gui is merged in, to load it:

# firewall-applet


External Resources