From Fedora Project Wiki
(Created page with "{{draft}} == Firewalld services == Firewalld service is a set of predefined firewall settings for particular system service or program, like for example <code>ssh</code> or ...")
 
Line 3: Line 3:
== Firewalld services ==
== Firewalld services ==


Firewalld service is a set of predefined firewall settings for particular system service or program, like for example <code>ssh</code> or <code>http</code>.
Firewalld service is a set of predefined firewall settings for a particular system service or program, like for example <code>ssh</code> or <code>httpd</code>.
In its simplest form it might be just a combination of port and/or protocol entries.
In its simplest form it might be just a combination of port and/or protocol entries.
Service configuration options and generic information about services are described in [https://jpopelka.fedorapeople.org/firewalld/doc/firewalld.service.html firewalld.service(5)].
Service configuration options and generic information about services are described in [https://jpopelka.fedorapeople.org/firewalld/doc/firewalld.service.html firewalld.service(5)].
Service files are installed into <code>/usr/lib/firewalld/services/</code> directory.
Service files are installed into <code>/usr/lib/firewalld/services/</code> directory.
The installed service file can be immediately used in firewalld's [https://fedoraproject.org/wiki/FirewallD#Permanent_configuration permanent configuration]
The installed service file can be immediately used in firewalld's [https://fedoraproject.org/wiki/FirewallD#Permanent_configuration permanent configuration]
but for it to be directly usable also in [https://fedoraproject.org/wiki/FirewallD#Runtime_configuration runtime configuration], one needs to reload firewalld in <code>%post</code> with a <code>%firewalld_reload</code> macro. The directory as well as the macro are part of <code>firewalld-filesystem</code> package.
but for it to be directly usable also in [https://fedoraproject.org/wiki/FirewallD#Runtime_configuration runtime configuration], it is needed to reload firewalld in <code>%post</code> with a <code>%firewalld_reload</code> macro. The directory as well as the macro are part of <code>firewalld-filesystem</code> package.


<pre>
<pre>

Revision as of 16:27, 8 January 2015

This page is a draft only
It is still under construction and content may change. Do not rely on the information on this page.

Firewalld services

Firewalld service is a set of predefined firewall settings for a particular system service or program, like for example ssh or httpd. In its simplest form it might be just a combination of port and/or protocol entries. Service configuration options and generic information about services are described in firewalld.service(5). Service files are installed into /usr/lib/firewalld/services/ directory. The installed service file can be immediately used in firewalld's permanent configuration but for it to be directly usable also in runtime configuration, it is needed to reload firewalld in %post with a %firewalld_reload macro. The directory as well as the macro are part of firewalld-filesystem package.

Requires: firewalld-filesystem
Requires(post): firewalld-filesystem

%files
%{_prefix}/lib/firewalld/services/myservice.xml

%post
%firewalld_reload