I am trying to convert a gateway from openSUSE to Fedora 21. For three SuSEfirewall2 features I could not find equivalents in firewalld.
1) Masquerade just one specific network (x.x.x.x/yy), not all my internal LANs. A --masquerade-source=x.x.x.x/yy perhaps?
https://github.com/openSUSE/susefirewall2/blob/ad82404be5358306d31ed355b9c1a...
2) Block from masquerading a couple of protocols/ports/services. i.e. masquerade everything except that. My internal clients (of those networks that are being masqueraded) are not allowed to access external DNS servers directly. They must use the gateway DNS server.
https://github.com/openSUSE/susefirewall2/blob/ad82404be5358306d31ed355b9c1a...
3) Redirect ports from a specific internal network to localhost for transparent proxy.
https://github.com/openSUSE/susefirewall2/blob/ad82404be5358306d31ed355b9c1a...
Thanks is advance.
firewalld-users@lists.fedorahosted.org