LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Fedora
User Name
Password
Fedora This forum is for the discussion of the Fedora Project.

Notices

Reply
 
Search this Thread
Old 02-03-2013, 08:32 AM   #1
sunveer
Member
 
Registered: Jul 2012
Posts: 137

Rep: Reputation: Disabled
firewalld


Fedora wiki says:
"The current firewall model is static and every change requires a complete firewall restart. This includes also to unload the firewall netfilter kernel modules and to load the modules that are needed for the new configuration. The unload of the modules is breaking stateful firewalling and established connections.

The firewall daemon on the other hand manages the firewall dynamically and applies changes without restarting the whole firewall. Therefore there is no need to reload all firewall kernel modules"


How is it so that changes are applied dynamically?
 
Old 02-03-2013, 04:41 PM   #2
jpopelka
LQ Newbie
 
Registered: Feb 2013
Posts: 1

Rep: Reputation: Disabled
All the "firewalls" (see for example https://wiki.archlinux.org/index.php/Firewalls) for linux are actually a front-ends to iptables tool which sets the firewall in kernel. AFAIC the result of all of them is a list of rules that can be read by iptables-restore command. Type iptables-save in terminal and you'll see what list I'm talking about. So whenever you modify firewall with these ("static") "firewalls" you flush all the old rules and read and apply all the new rules.

The "dynamic" in case of firewalld means that with each change you do, firewalld applies only the one change and do not recreate the firewall from scratch. It does that with iptables. For example it runs 'iptables -A ...' if you've allowed some service or 'iptables -D ...' if you've removed some service.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Permanent Configuration for firewalld wmakowski Fedora 1 01-24-2013 10:01 AM
LXer: Fedora 18 and Firewalld LXer Syndicated Linux News 0 09-20-2012 06:50 AM
how firewallD start on startup in fedora 17 - System Security Services Demon fails 100201 Fedora 1 07-12-2012 05:15 AM
[SOLVED] firewalld status? (Fedora gurus might know this) serafean Linux - Software 3 12-07-2011 03:02 AM


All times are GMT -5. The time now is 01:10 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration