twiest added a new comment to an issue you are following:
``
OpenShift Online Operations would really like firewalld to be included in atomic host.
We don't currently use firewalld, but we'd like to move to it sometime in the
future.
The thing we like most about firewalld is that since it has an API to manage persistent
firewall rules, it integrates very well into config management.
For instance, we use Ansible for config management and there is a [firewalld Ansible
module](http://docs.ansible.com/ansible/latest/firewalld_module.html).
There is also an [iptables Ansible
module](http://docs.ansible.com/ansible/latest/iptables_module.html), but since there
isn't an iptables API to manage persistent firewall rules, this Ansible module also
doesn't handle persistent iptable rules.
``
To reply, visit the link below or just reply to this email
https://pagure.io/atomic-wg/issue/372