Ask Your Question
1

is my firewall enabled by default - Fedora 22

asked 2015-11-01 01:09:27 -0600

Durandal gravatar image

Need to establish this quickly as I don't like the idea my system may be vulnerable.

I just installed Fedora Workstation v 22 and I'm trying to find out whether firewall is automatically enabled following the OS install?

I've only used ufw (uncomplicated firewall) thus far (in Debian), you simply typed 'ufw enable' in a terminal window, following install.

The Fedora 22 installer didn't prompt me to configure the firewall and the screen shot in their help page here: https://docs.fedoraproject.org/en-US/...

doesn't resemble what I'm looking at when I created my XFCE application menu > Administration > Firewall

I don't see the enable/disable buttons for example.

Any help appreciated.

Durandal

edit retag flag offensive close merge delete

2 Answers

Sort by ยป oldest newest most voted
3

answered 2015-11-01 11:04:50 -0600

aeperezt gravatar image

Fedora workstation come with firewalld enabled by default you can verify if enable with

sudo systemctl status firewalld

You can also look for what is open with

sudo firewall-cmd --list-all

That will show you the interface, ports and services enabled.

For more information look at https://fedoraproject.org/wiki/FirewallD or https://docs.fedoraproject.org/en-US/... developer oriented firewall section.

edit flag offensive delete link more

Comments

Can someone please let me know if this setting regarding ports is default and recommended?

  ports: 1025-65535/udp 1025-65535/tcp

Thanks

florian gravatar imageflorian ( 2015-11-02 21:10:55 -0600 )edit

Yes those setting are default open ports higher than 1025.

aeperezt gravatar imageaeperezt ( 2015-11-03 08:52:46 -0600 )edit

@aeperezt: Thank you for clarification.

florian gravatar imageflorian ( 2015-11-03 10:08:29 -0600 )edit

I immediayely turned off that port range, and opened the very few specific ports I needed opened.

HoboPrimate gravatar imageHoboPrimate ( 2015-11-05 19:42:34 -0600 )edit

I have to say that I was also a bit surprised by this, and I don't see a need. So, why is this huge range open by default?

florian gravatar imageflorian ( 2015-11-05 22:25:05 -0600 )edit
2

answered 2015-11-01 09:51:36 -0600

HoboPrimate gravatar image

Install the package firewall-config to configure the firewall.

edit flag offensive delete link more

Comments

This is the simplest and effective solution ...

EllePi gravatar imageEllePi ( 2015-11-01 14:34:05 -0600 )edit

Just by installing the software he still doesn't know if the firewall is active or not. Please provide more information what he should do after installing the software.

Raffael gravatar imageRaffael ( 2015-11-01 15:14:39 -0600 )edit

firewall-cmd --state

florian gravatar imageflorian ( 2015-11-02 21:12:13 -0600 )edit

@Florian firewall-cmd is provided by the package firewalld. @HoboPrimate recommends the package firewall-config. He should give more information which commands from this package will help the person who is asking the question.

Raffael gravatar imageRaffael ( 2015-11-05 16:26:29 -0600 )edit
2

Well, firewall-config is a desktop application to fully configure firewalld. The most typical use-cases of it is opening ports (and closing them). The other would be to assign zones to connections, so that depending if you are connecting to a public wifi network, you home network, or work one, certain rules apply with regards to the firewall.

HoboPrimate gravatar imageHoboPrimate ( 2015-11-05 19:40:35 -0600 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

2 followers

Stats

Asked: 2015-11-01 01:09:27 -0600

Seen: 1,748 times

Last updated: Nov 01 '15