[Freeipa-users] firewalld management

Rob Crittenden rcritten at redhat.com
Fri Jan 2 00:49:24 UTC 2015 

Andrew Holway wrote:
> This would perhaps be a very interesting addition to the HBAC stuff.
> We're considering deploying freeipa on EC2 and LDAP backed firewalld
> would be a very powerful tool for a geographically distributed system.

There is an existing open ticket for this request,
https://fedorahosted.org/freeipa/ticket/2110

A user contributed an initial design was contributed a few months ago,
http://www.freeipa.org/page/V4/Firewall_Configuration

Definitely a desirable feature, just a matter of scheduling it.

rob

> 
> 
> On 31 December 2014 at 16:56, Jorick Astrego <j.astrego at netbulae.eu
> <mailto:j.astrego at netbulae.eu>> wrote:
> 
>     Hi,
> 
>     FreeIPA is great! One thing I'm missing though is management of
>     firewalld services and ports.
> 
>     Is that something that would fit in FreeIPA?
> 
>     Currently we are using puppet scripts through katello/the foreman, but
>     as this is very error prone we'd like to have it centrally managed a
>     different way.
> 
>     The firewall rules are very essential IMHO and I thought the whole
>     point
>     of firewalld is to have make it more manageable...
> 
>     I already asked the katello guys but they don't appear very interested
>     in implementing something there, then I started thinking it would maybe
>     fit a lot better in freeIPA as it has more overlap with the other
>     network/authentication stuff.
> 
>     It would be wasteful to have another project just for firewalld
>     management.
> 
>     Happy new year everybody!
> 
>     Jorick
> 
> 
> 
> 
> 
> 
> 
>     **
>     Met vriendelijke groet, With kind regards,
> 
>     Jorick Astrego*
> 
>     Netbulae Virtualization Experts *
>     ------------------------------------------------------------------------
>     Tel: 053 20 30 270 	info at netbulae.eu <mailto:info at netbulae.eu>
>     Staalsteden 4-3A 	KvK 08198180
>     Fax: 053 20 30 271 	www.netbulae.eu <http://www.netbulae.eu> 	7547
>     TA Enschede 	BTW NL821234584B01
> 
> 
>     ------------------------------------------------------------------------
> 
> 
>     --
>     Manage your subscription for the Freeipa-users mailing list:
>     https://www.redhat.com/mailman/listinfo/freeipa-users
>     Go To http://freeipa.org for more info on the project
> 
> 
> 
>

More information about the Freeipa-users mailing list