Mapping firewalld services to ports and protocols
Robert Moskowitz <rgm <at> htt-consult.com>
2015-08-27 12:37:40 GMT
Over on the Samba list, I am trying to figure out what firewalld
services I need opened for all the things that a Samba AD does. I
could 'simply' take the list of iptables entries others have used
and add those ports, but I really WANT to learn about firewalld and
what its 'services' do. per:
A service can be a list of local ports and destinations and
additionally also a list of firewall helper modules automatically
loaded if a service is enabled. The use of predefined services
makes it easier for the user to enable and disable access to a
service. Service configuration options and generic file
information are described in the firewalld.service(5) man page.
And that manpage does not tell me what the services are and what
they map to. It is easy to learn the list of supported services:
RH-Satellite-6 amanda-client bacula bacula-client dhcp dhcpv6
ftp high-availability http https imaps ipp ipp-client ipsec kerberos
ldaps libvirt libvirt-tls mdns mountd ms-wbt mysql nfs ntp openvpn
pmwebapi pmwebapis pop3s postgresql proxy-dhcp radius rpc-bind samba
smtp ssh telnet tftp tftp-client transmission-client vnc-server
But what does 'samba' and 'samba-client' equal? What about
'kerberos'? Is 'kpasswd' == kerberos password?
See the challenge here?
So I have done SOME googling and have come up empty. I decided to
try here first, as Fedora users MAY have been working this out
longer than any other list I am active on. If no help here, I will
join the firewalld user list.
users mailing list
users <at> lists.fedoraproject.org
To unsubscribe or change subscription options:
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Have a question? Ask away: http://ask.fedoraproject.org