Are there any plans to support firewalld with puppetlabs/firewall?

asked 2014-11-13

Gary Jackson

updated 2016-09-27

Would something like this even make sense? If so, when would we expect to see this materialize?

I apologize if this is an inappropriate venue to ask this question.

NEEDS AN UPDATE- the module mentions firewalld, but no details.

Re-opening this question (I hope) puppetlabs/firewall starts service "firewalld" for RHEL/CentOS 7, but I see no information about zones and services and such. Contrarywise, there is crayfishx/firewalld So the question then becomes: Do we use one or the other ? Neither ? Both ? ...???!

LinuxDan ( 2016-09-27 )

puppetlabs/firewall 'stops' firewalld, it doesn't start it: So, it does not support firewalld. Craig's firewalld module seems like the alternative.

ken ( 2016-09-28 )

answered 2014-11-14

Gary Jackson

I got an answer from Hunter Haugen in the Puppet Google Group:

Unfortunately we (the puppetlabs module team) haven't yet started on the initiative to make this happen, but it has definitely been on our minds for a long while now.

I made really quickly to begin tracking this work though; as of yet there is no estimation for completion.

If you know any authors of an awesome firewalld module with whom we could work, make sure to point them our way!

I consider this matter answered.

Too old. This question should have an answer by now

LinuxDan ( 2016-09-27 )

I can't quite understand why this answer is unacceptable and has been re-opened as such. A link to a ticket has been provided tracking progress, and nothing has been done on it, but the answer itself is answered. Are we going to keep poking this until someone says 'yes it works' or something?

ken ( 2016-09-28 )

Apologies for the buggered approach. I am working on RHEL7 servers that require firewalld. This module currently installs and runs firewalld on a RHEL/CentOS 7 server, but there appears to be no provision for customizing the firewalld definitions.

LinuxDan ( 2016-09-28 )

Would a new question / issue / whatever be more appropriate ?

LinuxDan ( 2016-09-28 )

Asked: 2014-11-13

