On 11/04/2014 06:07 PM, Tomasz Torcz wrote:
Example: I'd like to add interface to proper firewalld "zone". Ideally it could be done by networkd itself (it just one dbus call: addInterface(in s zone, in s interface, …) based on new Zone=string setting in .netdev file. Hook can determine which zone interface should belong to and call firewall-cmd --zone=<zone> --add-interface=<interface>
I dont think there is much future in firewalld hence I was looking into integrating nftables with systemd using it's kernel api since it seems like a nice feature to be able to add iptables rules to units,netdevices,containers
JBG _______________________________________________ systemd-devel mailing list systemd-devel@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/systemd-devel
