FirewallD provides a dynamically managed firewall with support for network/firewall zones to define the trust level of network connections or interfaces. It has support for IPv4, IPv6 firewall settings and for ethernet bridges and has a separation of runtime and permanent configuration options. It also supports an interface for services or applications to add firewall rules directly.
Features
D-Bus API
Timed firewall rules
Rich Language for specific firewall rules
IPv4 and IPv6 NAT support
Lockdown: Whitelisting of applications that may modify the firewall
Support for iptables, ip6tables, ebtables firewall backends
Automatic loading of Linux kernel modules
Integration with Puppet
Who’s using it?
FirewallD is used in the following Linux distributions as the default firewall management tool:
RHEL 7
Fedora 18 and newer
Applications and libraries which support FirewallD as a firewall management tool include:
NetworkManager
libvirt
docker 1.7
Ref: http://www.firewalld.org/
No comments:
Post a Comment