* Anton Aylward <opensuse@antonaylward.com> [02-27-19 06:49]:
On 2019-02-27 6:19 a.m., Carlos E. R. wrote:
Remember that in a today's house there are a lot of gadgets with Internet connectivity that we don't control fully. Say, the fridge.
I'm not forgetting. EVERYTHING including my wifi is behind a firewall here. You'll have to ask James if his large number of directly addressable IPv6 addresses are all behind a firewall and what capability the firewall has.
Have you looked at https://software.opensuse.org/package/gufw
My setup is not simple.
I'll grant you that GUFW has a LOT of preconfigured simplistic and game-oriented packages to invoke but there is a way to do a more traditional port by port GUI setup reminiscent of the "Big Vendor" style listings. It is a setup that it /calls/ 'complex mode'. I think it can deal with the complexity and specifics P-T-P that you require.
Remember that these front ends, like them or not, and indeed Shorewall and IPCop, were/are front-end for IPTables. I recall with Shorewall and IPCop looking 'under the hod' at what the table rules were that they generated, algorithmically, and being amazed.
My desktop firewall opens certain ports to only certain IPs, so that a visitor would not get automatic access. I don't see that feature in firewalld.
I get a very strong feeling that firewalld s a regression.
yes, new things usually confound old f..ts -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Registered Linux User #207535 @ http://linuxcounter.net Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet freenode -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org