[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [atomic-devel] firewalld in atomic host

From: Dusty Mabe <dusty dustymabe com>
To: Fedora Cloud SIG <cloud lists fedoraproject org>
Cc: atomic-devel <atomic-devel projectatomic io>
Subject: Re: [atomic-devel] firewalld in atomic host
Date: Sun, 23 Apr 2017 23:33:26 -0400


On 04/21/2017 01:42 PM, Jason DeTiberus wrote:
> 
> While I can see firewalld improving the situation wrt documenting how to add/persist firewall changes for Atomic Host (especially when using moby/docker), I think there is a bigger concern with firewalld being absent. If a user is running multiple applications that modify the host firewall (docker, Kubernetes, OpenShift, etc), firewalld provides a way to make firewall modifications in a consistent and repeatable manner, where iptables does not. There is the --wait flag for iptables, however any applications/users that are interacting with iptables will need to ensure they use it consistently. 
> 

So you are saying firewalld makes your life easier if it was
available?

Thanks for the input.

Dusty

Follow-Ups:
- Re: [atomic-devel] firewalld in atomic host
  - From: Jason DeTiberus

References:
- [atomic-devel] firewalld in atomic host
  - From: Dusty Mabe
- Re: [atomic-devel] firewalld in atomic host
  - From: Jason DeTiberus

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]