published the release of a dynamically controlled intersete screen Firewalld 1.3 , implemented in the form of a binding above the NFTables and IPTables package filters. Firewalld is launched in the form of a background process that allows you to dynamically change the rules of the packet filter via d-bus, without the need to reboot the rules of the package filter and without the rupture of the installed connections. The project is already used in many Linux distributions, including RHEL 7+, Fedora 18+ and SUSE/Opensuse 15+. Firewalld code is written in Python and spreads under the license gplv2.
to control the Firewall-CMD utility, which when creating The rules are not repulsed from IP addresses, network interfaces and port numbers, but from the names of services (for example, to open access to SSH you need to perform Firewall-CMD-Service = SSH, to close SSH-“Firewall-CMD –remove –Service = ssh “). To change the configuration of the inter-grid screen, the Firewall-Config graphic interface (GTK) and the Firewall-Applet (QT) applet can also be used. Support for inter-sewn-screen control through D-Bus API Firewald is available in projects such as NetworkManager, Libvirt, Podman, Docker and Fail2ban.
The main Changes :
- Service with support for the exchange of Warpinator files, developed by the Linux Mint.
- Added services Bareos-Director, Bareos-Filedaemon and Bareos-Storage to support the backup system of Bareos.
- For nftables, the Masquarade rule is implemented, which allows you to tie network interfaces to the zone processing incoming traffic. For iptables, such an opportunity is not supported.
- Added service for overlay P2P nets Nebula.
- Added service for the CepH metric export system in the database Prometheus.
- Added a service with support for the protocol mg dds (Open Management Group Data Distribution Service).
- A service has been added to process customer requests for determining host names using the LLMNR protocol (Link-Local Multicast Name Resolution).
- Added service for the PS2Link protocol used to interact with the PlayStation 2.
- Service has been added to support the server operation for the system synchronization system SynChing.
distribution, is implemented.