On 7/14/24 8:53 PM, Darryl Gregorash wrote:
YaST firewall is supposed to handle whatever firewall openSUSE runs, either firewald or SuSEfirewall2. As the later is gone, it means YaST firewall module has to handle firewalld, or be removed from the distribution.
Thus, it is a bug in YaST.
Take a good look at firewalld. Yast-Firewall doesn't know about sets of things to which a rule applies, so it doesn't even adequately configure firewalld.
Well, Whatever it is doing, it is getting the basic commands right. When changed wlo1 to "home" and added "postgresql" and also manually opened port 5432 in the Yast-Firewall app, after restarting firewalld, those config options were reflected in the ports that were opened and the change of the default set to "home" was reflected in: # firewall-cmd --get-default-zone and # firewall-cmd --info-zone=home So somewhere Yast and firewalld are talking to each other through the Yast-Firewall app. (and yep, I always create a traditional root account with password during the install - it's windows otherwise...) -- David C. Rankin, J.D.,P.E.