Firewall Management

Special Thanks: This article was made possible by support from Linux Professional Institute

A firewall is an important part of a security strategy, but it is only one component and is not a security panacea for reasons that will become clear later in the discussion. A host-based firewall protects the local system just as a network firewall protects an entire network or part of a network, such as a DMZ.

Firewalld is the default firewall installed on CentOS 7 and newer, Red Hat Enterprise Linux 7 and newer (RHEL), and Fedora 18 and newer. If you use a Red Hat-based distribution, then you probably have it already. If you use other distributions, it’s available via git and as a tarball from firewalld.org. Firewalld uses zones to define trust levels of network connections or interfaces. Zones are an advanced topic not covered in this article. There will be a future article that covers firewalld zones.

[...]

Use Express-Checkout link below to read the full article (PDF).

Buy Linux Magazine

SINGLE ISSUES
Print Issues
Digital Issues
 
SUBSCRIPTIONS
Print Subs
Digisubs
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • firewalld

    Managing a firewall can be a hassle, but it's worse to manage a breach because you didn't have one.

    more »
  • Firewalld and OpenSnitch

    For maximum security, you'd better watch traffic in both directions. This hands-on workshop takes you through the steps of setting up firewalls for outgoing as well as incoming traffic.

    more »
  • GUI Firewall Tools

    Setting up a comprehensive firewall with netfilter and iptables is complicated. Graphic user interfaces seek to take the worries out of this demanding task.

    more »
  • Firewalls Intro

    Firewalls are becoming evermore sophisticated. Luckily, the tools for managing firewalls are becoming simpler and more accessible for ordinary users

    more »
  • KTools: KMyFirewall

    Linux has a fantastic selection of firewalls for securing stand-alone computers or whole networks. Although you can use IPTables to set up a firewall, the configuration is often the most difficult step. KMyFirewall offers a powerful, user-friendly, GUI-based approach.

    more »
comments powered by Disqus