Hi folks, Since there's currently a lot of discussion going on surrounding firewalld I thought I'd throw in another aspect to these discussions (following encouragement from Mathew Miller). I'm speaking with my shorewall package maintainer hat on, but the issue would arise with any other framework for managing iptables rulesets.
What's the official line (and hopefully this will end up in the documentation) on using other frameworks such as shorewall? In the past we've assumed that users installing shorewall know enough to disable the ip[6]tables service. Will the same be true with firewalld - i.e. will it simply be a case of disabling activation of firewalld? Is there any mechanism within firewalld for playing nicely with other products that generate iptables rules? Cheers, Jonathan.
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
