On 2019-06-25 16:15, Freek de Kruijf wrote:
Now that the date is near when SuSEfirewall2 will be removed I finally looked into what firewalld is offering.
My analyses are that firewalld just offers only very basic features. It lacks however more advanced features like rate limiting and control over logging.
My conclusion is that SuSEfirewall2 should not yet be replaced by firewalld. First firewalld should at least have the lacking features mentioned above.
I don't see any reason why SuSEfirewall2 should currently be replaced. Maintenance on it is minimal, so it could still exits next to firewalld.
I'm only using firewalld in a very limited way, so I cannot provide any empirical data, but there is a "Rich Language" in firewalld to specify some more advanced setups. Check man 5 firewalld.richlanguage It has a `Log` and `Audit` section as well as `Limit`. These sound like what you might be looking for!? Cheers -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org