Thank you so much! I am learning!!!
2 Likes
Not everything is known to anyone.
We are all mutually learning from each other.
Thatās why I like to spend time around here.
2 Likes
I just came across this thread again. I didnāt realise how aggressive I sounded in the fist few repliesā¦ crikey. 
2 Likes
Thanks from my heart.
Donāt think too much of it. We all have our own - sometimes daily - weaknesses.
this should not run on real hardware installs per defaultā¦
And firewallsd default profile is public:
[joe ~]$ sudo firewall-cmd --list-all
public (active)
target: default
icmp-block-inversion: no
interfaces: enp5s0
sources:
services: dhcpv6-client ssh
ports:
protocols:
forward: yes
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
We do use the defaults and do not change anything from the installer.
sshd is disabled per default and dhcpv6-client is needed for connectivity.
Only to complete hereā¦ the decision to user firewalld is currently the best option to provide firewall service per default.
But the system is owned by the user and you can decide to use whatever you want 
And indeed firewalld is not perfectā¦ main issue from my personal point of view is the GUI and the applet it ships in they are useful and nicely working but applet is causing load on some gtk based Desktops and the configuration GUI looks very complex from perspective of common users ā¦
1 Like
This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.