The new firewalld version 0.4.1.2 is available with enhancements, bug fixes and speed ups. There have been no announcements for the versions 0.4.1 and 0.4.1.1 as some issues has been discovered directly after the release, which are now fixed.
The main changes of firewalld-0.4.1, firewalld-0.4.1.1 and firewalld-0.4.1.2 are
ipset handling enhancements ---------------------------
No cleanup of ipsets using timeouts while reloading. Only destroy ipsets with the same name and a conflicting type or conflicting options. Use ipset types that are supported by the system.
Add and remove several ipset entries in one call using a file -------------------------------------------------------------
The new options for firewall-cmd are –add-entries-from-file and –remove-entries-from-file.
Reduced time frame where builtin chains are on policy DROP while reloading --------------------------------------------------------------------------
All config files are read before the rule set will be created. This is good on slower machines and also reduced the possibility of packet losses while reloading.
Command line interface support to get and alter descriptions ------------------------------------------------------------
The new options for firewall-cmd and firewall-offline-cmd are –set-description, –get-description, –set-short and –get-short for zones, services, ipsets and icmptypes.
Fixed logging in rich rule forward rules ----------------------------------------
Rework of import structures ---------------------------
Reduced calls to get ids for port and protocol names ----------------------------------------------------
NetworkManager module ---------------------
This module is used to get and set zones of connections, used in firewall-applet and firewall-config.
Autodetection of backend tools in configure --------------------------------------------
The {ip,ip6,eb}tables{,-restore} and ipset backend tools are discovered in the build process to use a proper path automatically. The with options for these tools in configure are still usable for overloading.
There are also several bug fixes and further code optimizations.
------------------------------------------------------------------------
The new firewalld version 0.4.1.2 is available here:
https://fedorahosted.org/released/firewalld/firewalld-0.4.1.2.tar.bz2
Also on github:
https://github.com/t-woerner/firewalld/releases/tag/v0.4.1.2
And in the github repository:
https://github.com/t-woerner/firewalld/ https://github.com/t-woerner/firewalld/tree/v0.4.0
firewalld-users@lists.fedorahosted.org