(Created page with "{{draft}} == Firewalld services == Firewalld service is a set of predefined firewall settings for particular system service or program, like for example <code>ssh</code> or ...") |
(Add BR line) |
||
(One intermediate revision by one other user not shown) | |||
Line 3: | Line 3: | ||
== Firewalld services == | == Firewalld services == | ||
Firewalld service is a set of predefined firewall settings for particular system service or program, like for example <code>ssh</code> or <code> | Firewalld service is a set of predefined firewall settings for a particular system service or program, like for example <code>ssh</code> or <code>httpd</code>. | ||
In its simplest form it might be just a combination of port and/or protocol entries. | In its simplest form it might be just a combination of port and/or protocol entries. | ||
Service configuration options and generic information about services are described in [https://jpopelka.fedorapeople.org/firewalld/doc/firewalld.service.html firewalld.service(5)]. | Service configuration options and generic information about services are described in [https://jpopelka.fedorapeople.org/firewalld/doc/firewalld.service.html firewalld.service(5)]. | ||
Service files are installed into <code>/usr/lib/firewalld/services/</code> directory. | Service files are installed into <code>/usr/lib/firewalld/services/</code> directory. | ||
The installed service file can be immediately used in firewalld's [https://fedoraproject.org/wiki/FirewallD#Permanent_configuration permanent configuration] | The installed service file can be immediately used in firewalld's [https://fedoraproject.org/wiki/FirewallD#Permanent_configuration permanent configuration] | ||
but for it to be directly usable also in [https://fedoraproject.org/wiki/FirewallD#Runtime_configuration runtime configuration], | but for it to be directly usable also in [https://fedoraproject.org/wiki/FirewallD#Runtime_configuration runtime configuration], it is needed to reload firewalld in <code>%post</code> with a <code>%firewalld_reload</code> macro. The directory as well as the macro are part of <code>firewalld-filesystem</code> package. | ||
<pre> | <pre> | ||
BuildRequires: firewalld-filesystem | |||
Requires: firewalld-filesystem | Requires: firewalld-filesystem | ||
Requires(post): firewalld-filesystem | Requires(post): firewalld-filesystem |
Latest revision as of 17:11, 8 March 2023
Firewalld services
Firewalld service is a set of predefined firewall settings for a particular system service or program, like for example ssh
or httpd
.
In its simplest form it might be just a combination of port and/or protocol entries.
Service configuration options and generic information about services are described in firewalld.service(5).
Service files are installed into /usr/lib/firewalld/services/
directory.
The installed service file can be immediately used in firewalld's permanent configuration
but for it to be directly usable also in runtime configuration, it is needed to reload firewalld in %post
with a %firewalld_reload
macro. The directory as well as the macro are part of firewalld-filesystem
package.
BuildRequires: firewalld-filesystem Requires: firewalld-filesystem Requires(post): firewalld-filesystem %files %{_prefix}/lib/firewalld/services/myservice.xml %post %firewalld_reload