<div dir="ltr">This would perhaps be a very interesting addition to the HBAC stuff. We're considering deploying freeipa on EC2 and LDAP backed firewalld would be a very powerful tool for a geographically distributed system.<div><br></div><div><br><div class="gmail_extra"><br><div class="gmail_quote">On 31 December 2014 at 16:56, Jorick Astrego <span dir="ltr"><<a href="mailto:j.astrego@netbulae.eu" target="_blank">j.astrego@netbulae.eu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <div> Hi, <br> <br> FreeIPA is great! One thing I'm missing though is management of <br> firewalld services and ports. <br> <br> Is that something that would fit in FreeIPA? <br> <br> Currently we are using puppet scripts through katello/the foreman, but <br> as this is very error prone we'd like to have it centrally managed a <br> different way. <br> <br> The firewall rules are very essential IMHO and I thought the whole point <br> of firewalld is to have make it more manageable... <br> <br> I already asked the katello guys but they don't appear very interested <br> in implementing something there, then I started thinking it would maybe <br> fit a lot better in freeIPA as it has more overlap with the other <br> network/authentication stuff. <br> <br> It would be wasteful to have another project just for firewalld management. <br> <br> Happy new year everybody! <br> <br> Jorick <br> <br> <br> <br> <br> <br> <br> <br> <b style="color:#604c78"></b><br><span style="color:#604c78"><font color="000000"><span lang="NL">Met vriendelijke groet, With kind regards,<br><br></span>Jorick Astrego</font></span><b style="color:#604c78"><br><br>Netbulae Virtualization Experts </b><br><hr style="border:none;border-top:1px solid #ccc"><table style="width:522px"><tbody><tr><td style="width:130px;font-size:10px">Tel: 053 20 30 270</td> <td style="width:130px;font-size:10px"><a href="mailto:info@netbulae.eu" target="_blank">info@netbulae.eu</a></td> <td style="width:130px;font-size:10px">Staalsteden 4-3A</td> <td style="width:130px;font-size:10px">KvK 08198180</td></tr><tr> <td style="width:130px;font-size:10px">Fax: 053 20 30 271</td> <td style="width:130px;font-size:10px"><a href="http://www.netbulae.eu" target="_blank">www.netbulae.eu</a></td> <td style="width:130px;font-size:10px">7547 TA Enschede</td> <td style="width:130px;font-size:10px">BTW NL821234584B01</td></tr></tbody></table><br><hr style="border:none;border-top:1px solid #ccc"><br> </div> <br>--<br> Manage your subscription for the Freeipa-users mailing list:<br> <a href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a><br> Go To <a href="http://freeipa.org" target="_blank">http://freeipa.org</a> for more info on the project<br></blockquote></div><br></div></div></div>