On 02/18/2013 01:35 PM, "Jørgen Thomsen" wrote:
On Mon, 18 Feb 2013 12:46:10 +0100,Jiri Popelka wrote:
b) iptables --list are displaying a set of rules. From where are they loaded ?
I'm not sure I understand the question.
Users of iptables are used to handling rules loaded from e.g. a file saved by iptables-save and managed by their own simple scripts. This is probably no longer possible. iptables --list is listing the rules as they always have been listed, but they cannot be found in /etc/sysconfig.
How about this simple addition to the firewalld man page:
The firewalld configuration is loaded from XML-files in /etc/firewalld. Predefined rules files can be found in /usr/lib/firewalld
Added in http://git.fedorahosted.org/cgit/firewalld.git/commit/?id=b84b30f5e148bf83b0...
This fact is not obvious for a new user, but just specifying this is creating a framework for the user and improving the understanding very much. I had to spend much time to understand this simple fact.
All man pages point to the home page at http://fedorahosted.org/firewalld/
Basic information should be in the man pages and not via a chain of URLs not easily read from a command line on a computer possibly not connected to the Internet (yet).
I added the wiki URL to firewalld and firewall-cmd man pages. I'll think more about if and what examples should we put into firewall-cmd man page.
-- Jiri
firewalld-users@lists.fedorahosted.org