[ale] Firewalld is incomplete
ale at advancedopen.com
Wed Feb 20 00:53:17 EST 2019
As much as I was fighting to find a worthy, Linux-based firewall distro
for our office that was feature-rich, and still free, I came to conclude
that the BSD-based "OpnSense" was a fantastic pfSense fork and my best
option. We'd used Endian in the past, but it was far too simple for
some of our VLAN needs, and I had to standardize on something.
On 1/31/2019 4:43 PM, Jim Kinney via Ale wrote:
> Hmm. Looks like iptables has not been dropped. My Fedora 29 installs:
> Apparently the different tools can all be used to manipulate the
> netfilter subsystem in the kernel.
> But, yes, for some loosely defined value of "using", you are correct
> that nftables is the replacement.
> By the time I wrap my head of _that_ it will all be run in systemd
> anyway so I won't need to do anything :-}
> On Thu, 2019-01-31 at 15:03 -0600, Preston via Ale wrote:
>> On 1/26/2019 8:17 PM, Jim Kinney via Ale wrote:
>>> The firewall was overdue for replacement... This is done with several iptables entries for nat and port
>> Wait, I thought we were supposed to be using nftables nowadays.
> James P. Kinney III
> Every time you stop a school, you will have to build a jail. What you
> gain at one end you lose at the other. It's like feeding a dog on his
> own tail. It won't fatten the dog.
> - Speech 11/23/1900 Mark Twain
> Ale mailing list
> Ale at ale.org
> See JOBS, ANNOUNCE and SCHOOLS lists at
Brian W. Neu
Advanced Open Systems, Inc.
Technology Applied for Business
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Ale