On Tue, 16 Jun 2015 09:36:19 +0200
David Sommerseth <[email protected]> wrote:
> On 16/06/15 09:12, ToddAndMargo wrote:
> > On 06/15/2015 11:55 PM, David Sommerseth
> [...snip...]
> >>
> >> firewalld isn't replacing iptables, it actually depends on it.
> >> Firewalld is more like a more advanced configuration tool for
> >> iptables.
/usr/lib/systemd/system/firewalld.service:
[Unit]
Description=firewalld - dynamic firewall daemon
Before=network.target
Before=libvirtd.service
Before=NetworkManager.service
Conflicts=iptables.service ip6tables.service ebtables.service
Note the "Conflicts". In my experience, you have to shut down
firewalld if you want to run iptables (and yes, I have
iptables-services installed, running iptables under
systemd on SL7)
At some point I may convert from iptables to firewalld,
but I'm not quite ready yet.
--
Drexel University \V --Chuck Lane
======]---------->-----*------<--------[===========
(215) 895-1545 / \_/*~~~~~ Particle Physics
FAX: (215) 895-1281 [email protected]
