From Fedora Project Wiki

 
(2 intermediate revisions by the same user not shown)
Line 5: Line 5:
 
=How to test=
 
=How to test=
  
=== 1. Start firewalld ===
+
Start firewalld
  
 
   systemctl start firewalld.service
 
   systemctl start firewalld.service
  
=== 2. Check if it is up and running ===
+
Check if it is up and running
  
 
   systemctl status firewalld.service
 
   systemctl status firewalld.service
  
=== 3. Check if the firewall command line tool 'firewall-cmd' is able to connect to the firewall daemon ===
+
Check if the firewall command line tool ''firewall-cmd'' is able to connect to the firewall daemon
  
 
   firewall-cmd --state && echo "running"
 
   firewall-cmd --state && echo "running"
Line 19: Line 19:
 
The result should be ''running''
 
The result should be ''running''
  
=== 4. Check if zones are set up ===
+
Check if zones are set up
  
 
   iptables-save | grep ZONE | wc -l
 
   iptables-save | grep ZONE | wc -l
 
   ip6tables-save | grep ZONE | wc -l
 
   ip6tables-save | grep ZONE | wc -l
  
The output of both command should not be null.
+
The output of both commands should not be null.
 +
 
 +
Check that you see no errors (or anything weird) in
 +
 
 +
  less /var/log/firewalld
 +
 
 +
and
 +
 
 +
  less /var/log/messages
 +
 
 +
The libvirtd errors have already been reported as [https://bugzilla.redhat.com/show_bug.cgi?id=884346 Bug #884346]
 +
 
 +
For more examples see also [http://fedoraproject.org/wiki/FirewallD#Generic_use http://fedoraproject.org/wiki/FirewallD]

Latest revision as of 17:17, 11 December 2012

Description

This is the test case to check if firewalld is able to start and if the firewall setup is working.

How to test

Start firewalld

 systemctl start firewalld.service

Check if it is up and running

 systemctl status firewalld.service

Check if the firewall command line tool firewall-cmd is able to connect to the firewall daemon

 firewall-cmd --state && echo "running"

The result should be running

Check if zones are set up

 iptables-save | grep ZONE | wc -l
 ip6tables-save | grep ZONE | wc -l

The output of both commands should not be null.

Check that you see no errors (or anything weird) in

 less /var/log/firewalld

and

 less /var/log/messages

The libvirtd errors have already been reported as Bug #884346

For more examples see also http://fedoraproject.org/wiki/FirewallD