Hi Chris: On Thu 7/20/17 16:23 -0500 Chris Clark wrote: > http://www.firewalld.org/documentation/man-pages/firewall-cmd.html > https://fedoraproject.org/wiki/Firewalld?rd=FirewallD Thanks. > you can always use iptables-save to dump out an iptables rules set > and then maybe come up with a way to integrate it into the iptables > hierarchy that firewalld has. My rules are simple, so that is not an issue. I switched over a test box in about 5 minutes, First command I used was: systemctl stop iptables && systemctl enable firewalld && systemctl start firewalld && systemctl status firewalld Then I manually added the rules, did a reload, ran tests (all good), and then less /etc/firewalld/zones/public.xml # Probably should be under version control? systemctl disable iptables -- regards, Tom -- Is there no way to swap in / reload a new hand edited version to /etc/firewalld/zones/public.xml? --snip -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
