Ebipụtala mwepụta nke firewalld 1.2 na-achịkwa nke ọma, etinyere ya n'ụdị ihe mkpuchi n'elu nftables na nzacha iptables. Firewalld na-agba ọsọ dị ka usoro ndabere na-enye gị ohere ịgbanwe iwu nzacha ngwugwu site na D-Bus na-enweghị ibugharị iwu nzacha ngwugwu ma ọ bụ mebie njikọ eguzobere. Ejirilarị ọrụ a n'ọtụtụ nkesa Linux, gụnyere RHEL 7+, Fedora 18+ na SUSE/openSUSE 15+. Edere koodu firewalld na Python ma nwee ikike n'okpuru GPLv2.
Iji jikwaa firewall, a na-eji firewall-cmd utility, nke, mgbe ị na-emepụta iwu, adabereghị na adreesị IP, netwọk netwọk na nọmba ọdụ ụgbọ mmiri, kama na aha ọrụ (dịka ọmụmaatụ, iji mepee ohere na SSH ị kwesịrị. na-agba ọsọ “firewall-cmd —gbakwunye —ọrụ = ssh”, imechi SSH – “firewall-cmd –remove –service=ssh”). Ka ịgbanwee nhazi nke firewall, a nwekwara ike iji ngwa ngwa firewall-config (GTK) na ngwa ngwa firewall-applet (Qt). Nkwado maka njikwa ọkụ site na D-BUS API firewalld dị na ọrụ dịka NetworkManager, libvirt, podman, docker na fail2ban.
Isi mgbanwe:
- Emejuputala ọrụ snmptls na snmptls-trap iji hazie ịnweta usoro SNMP site na ọwa nkwukọrịta echekwara.
- Emejuputala ọrụ nke na-akwado ụkpụrụ ejiri na sistemụ faịlụ agbajighị IPFS.
- Ọrụ agbakwunyere nwere nkwado maka gpsd, ident, ps3netsrv, CrateDB, checkmk, netdata, Kodi JSON-RPC, EventServer, Prometheus node-exporter, kubelet-readonly, yana ụdị echekwara-ụgbọ elu k8s echekwara.
- agbakwunyere oke "--log-target".
- Agbakwunyela ọnọdụ mmalite enweghị nchekwa, nke na-enye ohere, ọ bụrụ na enwere nsogbu na iwu akọwapụtara, ịtụgharịghachi na nhazi ndabara na-ahapụghị onye ọbịa ahụ na-echebeghị ya.
- Bash na-akwado mmecha iwu maka ịrụ ọrụ na iwu.
isi: opennet.ru