On Sat, Nov 05, 2022 at 10:36:47AM +0300, Andrei Borzenkov wrote:
On 04.11.2022 16:56, Eric Garver wrote:
> On Fri, Nov 04, 2022 at 04:31:51PM +0300, Andrei Borzenkov wrote:
> > I routinely see questions related to firewall on forums which cannot be
> > answered without seeing the actual configuration. Unfortunately firewalld
> > does not seem to offer any simple way to list it.
> >
> > firewall-cmd --list-all
> >
> > only shows current zone.
>
> Yeah. --list-all existed before policies.
>
Well, --list-all does not even list all active zones. It lists only default
zone which may or may not be active.
There is already --list-all-zones and --list-all-policies. They will
dump all zones/policies.
> Perhaps it should list all zones and policies, but that would be
very
> verbose. It's also a change in behavior.
>
> We could add --list-all-active, which could list active zones and
> policies. We already have --get-active-zones and --get-active-policies,
> but those don't list details.
>
Do you need an issue on github?
Yes. We can discuss a new CLI option there.