Concern that firewalld is not ready to be default firewall

[David Highley]

What to express that firewalld is not ready to be the default firewall.
We believe it is a step in the right direction, but lacks documentation,
migration support, and the crucial need for permanent use of direct
rules on restart.

We did attempt to put into the Fedora distribution the sshdfilter
software but there was no way to do it within the existing structure as
it required modifications to other packages. So we see the need, but we
can not see how to use what is currently released.

What the user does not understand, including administrators, that gets
in the way of usage will be disabled. Administrators will not migrate to
this until they can clearly see how to do safe implementations.

For Fedora 18 we plan not to use firewalld until we can be confident
that we can implement a safe fire wall and know how it is working.