Re: C7, firewalld and rich rules

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



> Hi, again, folks,
>
>    I'm trying to convert a number of iptables rules to firewalld rich
> rules. I need to do this, because this is, in fact, a firewall, to
> protect access to servers with sensitive data. It will limit access to
> the servers behind it to a specific network, and nobody else, and allow
> only certain services through.
>
>    What I've been trying to find is a script/program that converts the
> output of iptables-save to something I can feed to firewall-cmd.
> Anyone have a link to such?
>
>    I admit this is annoying. Why is it, when some New Kewl thing is
> introduced, it *always* expects you to start anew, rather than giving
> you a tool to convert what you had. I ran into this 15 years ago,
> trying to put an existing website into bricolage (early CMS), and here
> I am, trying to do this.
>
>    Anyway, any links would be appreciated.

Did you look at Shorewall? IMHO that's what is best used in such
situations and it works since many years now.

http://www.shorewall.org/

Regards,
Simon

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos



[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]


  Powered by Linux