On 2018-03-12 09:59, Peter Suetterlin wrote:
Carlos E. R. wrote:
From the quick look I took at "firewall-config", you click the'ssh' box on the right hand side, and save the config. Something like that.
There is clearly a bit of a learning curve here.
If you do that, on the next boot you have to redo everything. By default, all changes are temporary. In "options" you have to click on "Runtime to permanent", or previously switch configuration to Permanent.
Come on - this is at least one of the things that *is* very clear in this GUI. And it's a usefull thing if you quickly want to change some setting without changing the defaults.
I agree that it is useful, but no, it was not obvious to me at all. I read about it in a link at <https://en.opensuse.org/SDB:LAMP_setup> (posted by Victorhck).
Ah: the "Help" menu only has an "About" box.
Well - you heard about the issue of distributing the docs?
SCNR.....
Er... no... You mean that there is a licensing issue with the docs? Someone said so, yes. Why, no idea.
I go to the documentation site.
<http://www.firewalld.org/documentation/helper/>
"A firewalld helper defines the configuration that are needed to be able to use a netfilter connection tracking helper if automatic helper assignment is turned off, which is then the secure use of connection tracking helpers."
I understand nothing...
You can also try to read the (local) manpages, there are quite some. I tried yesterday evening, but the result was similar, so I stopped. You need to read that fully awake (and maybe with a lot of coffee around...)
So I'm not the only one ;-)
This no documentation on the YaST firewall module...
Well, the 'Yast Module' is just the (external, also from firewalld.org) firewall-config. But don't try to read the manpage...
Knowing now its name, I located a better place: <http://www.firewalld.org/documentation/utilities/firewall-config.html> I just added some modifications to our wiki. -- Cheers / Saludos, Carlos E. R. (from 42.2 x86_64 "Malachite" at Telcontar)