-
Notifications
You must be signed in to change notification settings - Fork 217
/
Copy pathfeature-firewall.html
51 lines (51 loc) · 2.59 KB
/
feature-firewall.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
---
layout: guide
---
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Firewall</title>
<meta name="generator" content="DocBook XSL Stylesheets Vsnapshot">
<link rel="home" href="index.html" title="Cockpit Guide">
<link rel="up" href="features.html" title="Part II. Feature Internals">
<link rel="prev" href="feature-networkmanager.html" title="NetworkManager">
<link rel="next" href="feature-storaged.html" title="storaged">
<link rel="stylesheet" href="style.css" type="text/css">
</head>
<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
<table class="navigation" id="top" width="100%" summary="Navigation header" cellpadding="2" cellspacing="2"><tr valign="middle">
<td><a accesskey="p" href="feature-networkmanager.html"><img src="left.png" width="24" height="24" border="0" alt="Prev"></a></td>
<td><a accesskey="u" href="features.html"><img src="up.png" width="24" height="24" border="0" alt="Up"></a></td>
<td><a accesskey="h" href="index.html"><img src="home.png" width="24" height="24" border="0" alt="Home"></a></td>
<th width="100%" align="center">Cockpit Guide</th>
<td><a accesskey="n" href="feature-storaged.html"><img src="right.png" width="24" height="24" border="0" alt="Next"></a></td>
</tr></table>
<div class="chapter">
<div class="titlepage"><div><div><h2 class="title">
<a name="feature-firewall"></a>Firewall</h2></div></div></div>
<p>Cockpit uses <a class="ulink" href="https://www.firewalld.org" target="_top">firewalld</a> to
interact with the system's firewall. No firewall configuration UI will be
shown if firewalld is not installed.</p>
<p>Firewalld controls access to its APIs via PolicyKit. The user logged
into Cockpit needs to have the appropriate permissions to view or modify
the settings.</p>
<p>Cockpit can currently only show, add, and remove predefined firewalld
services in the default zone.</p>
<p>To perform similar tasks from the command line, use
<a class="ulink" href="https://www.firewalld.org/documentation/man-pages/firewall-cmd.html" target="_top">firewall-cmd</a>.
For example, to get the same list of allowed services that Cockpit
displays:</p>
<pre class="programlisting">
$ <span class="command"><strong>sudo firewall-cmd --list-services</strong></span>
dhcpv6-client samba-client mdns ssh cockpit
</pre>
<p>To enable an additional service, use:</p>
<pre class="programlisting">
$ <span class="command"><strong>firewall-cmd --add-service pop3</strong></span>
success
</pre>
</div>
<div class="footer"><hr></div>
</body>
</html>