Features/FirewalldRichLanguage

From FedoraProject

< Features
Revision as of 17:01, 28 January 2013 by Twoerner (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Contents

firewalld Rich Language

Summary

This feature adds a high level language to firewalld, that allowes to easily create complex firewall rules without the knowledge of iptables syntax.

Owner

Current status

  • Targeted release: Fedora 19
  • Last updated: 2013-02-28
  • Percentage of completion: 10%

Detailed Description

Complex firewall rules can currently be added using the direct interface of firewalld, but this requires to know the syntax of iptables.

With the rich language more complex firewall rules can be created in an easy to understand way. The language will use keywords with values.

The configuration with files will be available for Fedora 19. The D-BUS interface should be possible, depends on Fedora 19 schedule. UI work will most likely be available later.

Benefit to Fedora

A powerful and easy way to create complex firewall setups.

Scope

Only needs changes in firewalld and it's components.

How To Test

Create firewall rules using the rich language.

User Experience

The rich language is an addition to firewalld. The current setup and configuration can still be used.

Dependencies

None.

Contingency Plan

Only users of the new language might be affected. None so far.

Documentation

TBD

Release Notes

Fedora 19 includes the latest firewalld version that supports a rich language to be able to create complexer firewalls in a simple way.

Comments and Discussion