[release-notes] Describe the Workstation Firewall

[Pete Travis]

commit 2f452e977211397de0a521fdb92e2ad520a3de4b
Author: Pete Travis <immanetize at fedoraproject.org>
Date:   Sat Oct 4 20:34:11 2014 -0600

    Describe the Workstation Firewall

 en-US/Products-Workstation.xml |   12 ++++++++++++
 1 files changed, 12 insertions(+), 0 deletions(-)
---
diff --git a/en-US/Products-Workstation.xml b/en-US/Products-Workstation.xml
index a384163..a186892 100644
--- a/en-US/Products-Workstation.xml
+++ b/en-US/Products-Workstation.xml
@@ -24,6 +24,18 @@
       To disable this feature, remove <filename>/etc/NetworkManager/conf.d/20-connectivity-fedora.conf</filename>
     </para>
   </section>
+  <section>
+    <title>Developer oriented firewall</title>
+    <para>
+      Developers often run test servers that run on high numbered ports, and interconnectivity with many modern consumer devices also requires these ports.  The firewall in Fedora Workstation, <systemitem class-"daemon">firewalld</systemitem>, is configured to allow these things.
+    </para>
+    <para>
+      Ports numbered under 1024, with the exceptions of <systemitem class="daemon" >sshd</systemitem> and clients for <application>samba</application> and <application>DHCPv6</application>, are blocked to prevent access to system services.  Ports above 1024, used for user-initiated applications, are open by default.
+    </para>
+    <para>
+      Refer to <ulink url="https://fedoraproject.org/wiki/FirewallD" /> for details on customizing the firewall configuration, or install the <package>firewall-config</package> package for a graphical tool.
+    </para>
+  </section>
 </section>