hi all,
I've been using firewalld for a while. firewall-config (GTK) and firewall-cmd are cool clients to configure firewalld.
However, can an additional web based interface be provided for it?
The reason for this request is that :
1 partly I run it in a gateway box, it may not literally have a display attached. Much like a plastic router box if you'd like.
2 (Many?) distributions are 'migrating' to wayland https://wayland.freedesktop.org/ https://wayland.freedesktop.org/. This is a big bummer as setting -display in the old X11 may way no longer works and it requires RDP (remote desktop), just to get onto the graphical screen.
For (2) I may be 'confused', unsure. The thing is if the distribution runs on a Wayland server rather than a conventional X Org / X11 based server. firewall-config (GTK) would still remain as a X11 app and -display would still work normally?
Either way, I'd think providing a web based interface / console for the configs is a good thing. And it'd seem the effort is modest? This would also cater to the 'headless' boxes that use firewalld. I'd think HTTP digest (preferably not basic - this requires https to be safe) authentication, https://www.rfc-editor.org/rfc/rfc7616 https://www.rfc-editor.org/rfc/rfc7616 https://www.rfc-editor.org/rfc/rfc2617 https://www.rfc-editor.org/rfc/rfc2617 ,would likely be adequate for it.
Note that in addition, the web interface will need to have configs to run on IP address and accessible on the 'internal' side of the firewall only. Probably that it is deactivated by default in configs as well.
Thanks, Andrew
firewalld-users@lists.fedorahosted.org