published the release of a dynamically controlled inter-grid screen Firewall 1.2 , implemented in the form of a strapping above the Nftables and Iptables package filters. Firewalld is launched in the form of a background process that allows you to dynamically change the rules of the packet filter via d-bus, without the need to reboot the rules of the package filter and without the rupture of the installed connections. The project is already used in many Linux distributions, including RHEL 7+, Fedora 18+ and SUSE/Opensuse 15+. Firewalld code is written in Python and spreads under the license gplv2.
to control the Firewall-CMD utility, which when creating The rules are not repulsed from IP addresses, network interfaces and port numbers, but from the names of services (for example, to open access to SSH you need to perform Firewall-CMD-Service = SSH, to close SSH-“Firewall-CMD –remove –Service = ssh “). To change the configuration of the inter-grid screen, the Firewall-Config graphic interface (GTK) and the Firewall-Applet (QT) applet can also be used. Support for inter-sewn-screen control through D-Bus API Firewald is available in projects such as NetworkManager, Libvirt, Podman, Docker and Fail2ban.
The main Changes :
- SNMPTLS and SNMPTLS-TRAP for Protective Protective for Protective for Protective for Protecto >
- Service with support for the protocol used in the decentralized file system IPFS.
- Added services with support for GPSD, IDENT, PS3NETSRV, CRRETEDB, CheckMk, Netdata, Kodi Json-RPC, EventServer, Prometheus Node-Exporter, Kubelet-Readonly, as well as the secure version of the K8S Controller.
- Added parameter “—log-Target”.
- Added launch mode Failsafe , allowing, if problems with given rules, roll back to the default configuration without leaving Host without protection.
- For Bash, support for auto -filling of commands for working with the rules.