Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
11-15-2016, 12:36 AM
|
#1
|
Member
Registered: Feb 2011
Location: Republic Of Ireland
Distribution: Debian,Centos,Slackware
Posts: 508
Rep:
|
best way to configure a firewall on RHEL7
hi guys,
read this:
The RHCSA objective does not define which tool you should use to create firewall rules. It just mentions that you should be able to create firewall rules by using iptables, firewall-config, or firewall-cmd. So, you do not have to be able to work with each of these tools; you just have to be able to configure a firewall with the tool that works best for you.
what would you recommend and why?
iptables
firewall-config
firewall-cmd
thanks
|
|
|
11-15-2016, 05:37 AM
|
#2
|
Member
Registered: Apr 2010
Location: Kinshasa, Democratic Republic of Congo
Distribution: RHEL, Fedora, CentOS
Posts: 525
Rep:
|
Hi,
My recommendation is firewall-cmd.
iptables is still good, but it is the past.
|
|
|
11-16-2016, 07:41 AM
|
#3
|
LQ Guru
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 27,815
|
Quote:
Originally Posted by sigint-ninja
hi guys,
read this:
The RHCSA objective does not define which tool you should use to create firewall rules. It just mentions that you should be able to create firewall rules by using iptables, firewall-config, or firewall-cmd. So, you do not have to be able to work with each of these tools; you just have to be able to configure a firewall with the tool that works best for you.
what would you recommend and why?
iptables
firewall-config
firewall-cmd
|
I wouldn't recommend any of them...because it's YOU taking the exam. Since you have the flexibility to choose one, the best and most obvious answer is for you to read about/try/study all three, and figure out which one you can use best. If all three do the same things, and your objective is to pass an exam, then whichever you find you can work with easiest, use.
|
|
|
11-28-2016, 04:54 PM
|
#4
|
Member
Registered: Feb 2011
Location: Republic Of Ireland
Distribution: Debian,Centos,Slackware
Posts: 508
Original Poster
Rep:
|
so tbone,
it doesnt really matter? they all accomplish the same thing
but isnt there pros and cons to doing thins differently?
the previous poster said iptables is in the past...do you agree?
|
|
|
11-28-2016, 08:14 PM
|
#5
|
LQ Guru
Registered: Jan 2005
Location: USA and Italy
Distribution: Debian testing/sid; OpenSuSE; Fedora; Mint
Posts: 5,524
|
I believe all three options use iptables. The other two simply parse iptables rules. Once I started using iptables directly it was so much easier to lock down a network exactly the way I wanted that I just kept using it.
|
|
|
11-28-2016, 10:17 PM
|
#6
|
LQ Muse
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,709
|
use bash
|
|
|
11-29-2016, 07:16 AM
|
#7
|
LQ Guru
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 27,815
|
Quote:
Originally Posted by sigint-ninja
so tbone,
it doesnt really matter? they all accomplish the same thing but isnt there pros and cons to doing thins differently? the previous poster said iptables is in the past...do you agree?
|
You either didn't read what I posted, or missed the point.
To break it down: - YOU are wanting to take a 'certification' exam.
- YOU have the choice of tools to use to accomplish a task
- YOU are going to have to decide what is easiest for YOU to use
- And the only way to determine what is better for YOU is for YOU to actually use both tools
There is no 'right' answer for anyone to give you...this is like asking someone, "Is the CLI easier than the GUI to use?" Depends on the user, and what THEY are comfortable with.
|
|
|
12-04-2016, 04:45 PM
|
#8
|
Member
Registered: Feb 2011
Location: Republic Of Ireland
Distribution: Debian,Centos,Slackware
Posts: 508
Original Poster
Rep:
|
ok with you TBONE thanks...understand now.
|
|
1 members found this post helpful.
|
12-05-2016, 12:26 PM
|
#9
|
Senior Member
Registered: Dec 2003
Location: The Key Stone State
Distribution: CentOS Sabayon and now Gentoo
Posts: 1,249
Rep: 
|
Quote:
Originally Posted by sigint-ninja
the previous poster said iptables is in the past...do you agree?
|
Just because someone say something doesn't make it true. But here are some true statements for you.
Redhat does everything to try and stand out even to the point of trying to make the way they do things the standard.
Since you are taking the test you need to decide what works best for you and what you can use to complete the task at hand in a timely matter as in the end that is what counts, complete each task correctly in a timely matter.
|
|
|
All times are GMT -5. The time now is 04:01 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|