Important question

[Gene Czarcinski]

On 12/18/2012 11:54 AM, Chuck Forsberg WA7KGX N2469R wrote:
> On 12/18/2012 08:15 AM, Gene Czarcinski wrote:
>> OK, so maybe I an nuts but it seems to me that there is this 800 
>> pound gorilla wondering around the Fedora 18 tent and its name is 
>> firewalld!  Or it with respect to virtual guests and libvirt (since 
>> libvirt is a critical part of networking support).
>>
>> Maybe I am missing some critical information as to how to configure 
>> firewalld so that guests can perform functions which the same guest 
>> can do on a Fedora 17 host.  She only firewalld configuration I have 
>> been able to come up with is to configure it disabled.
>>
>> https://bugzilla.redhat.com/show_bug.cgi?id=888288
>>
>> I have test this problem on different hardware and with/without mu 
>> usual updates of libvirt-1.0.1 and NetworkManager-git20121130. Please 
>> tell me that there is just this little thing I need to do and 
>> everything will work.
>>
>> With Fedora 18 to be released "real soon now", this is a very big 
>> problem!  I remember with SELinux first appeared ... most people 
>> disabled it.  Is this what is going to happen with firewalld?
>>
>> A big part of my problem is that I see little notice that there is a 
>> problem.
>>
>> I do not like cross posting but this needs to be on a couple of lists 
>> so I will be sending each a copy of this message.
>>
>> Gene
> I almost always have to disable selinux to get almost anything out of 
> the ordinary done.
> It would be nice to have the option of not having the selinux slowing 
> down the system.
I have used SELinux from the beginning and toughed it out a number of 
times ... and reported the policy gliches when then happened.  I would 
like to use firewalld but it is far too good with respect to virtual 
guests ... it is not a firewall, it is a brickwall.

Like I said, I hope that it is simply doing "this or that" to make 
things work.

gene