[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: firewall changes for F-9+

On Thu, Jan 17, 2008 at 12:07:52AM +0000, Bastien Nocera wrote:
> On Wed, 2008-01-16 at 18:52 +0100, Thomas Woerner wrote:
> > Hello,
> > 
> > here are the latest changes for system-config-firewall for F-9+:
> > 
> > The usage of --port=<port>:<proto> for lokkit will open up this port and 
> > not a service using this port anymore. To enable a service you have to 
> > use the new --service=<name> option. There are no magic default open 
> > services. You have to open up the services, you want to use. The interim 
> > options --no-X; X in ["ipsec", "mdns", "ipp"] are obsolete now.
> > 
> > To setup a new firewall, you can use the new --default=<name> 
> > configuration option as a start:
> >    server  : ssh is enabled
> >    desktop : ipsec, mdns and ipp are enabled
> IpSec and IPP as services don't sound very much like desktop
> applications.

Definitely. Also mdns enabled on desktop doesn't make sence for me. I
think only ssh will be enabled on both server and desktop.


Adam Tkac, Red Hat, Inc.

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]