IceFoxX,

I like iptables + opensnitch

cereals,

I like firewalld. Its also used on many enterprise distros (RHEL, SLES).

But if you just have to open one port for something, just use what’s installed on your distro.

j4k3,
@j4k3@lemmy.world avatar

Network Filter Tables (NFT) is the current system. wiki.nftables.org/wiki-nftables/…/Main_Page

jajabor, (edited )
@jajabor@piaille.fr avatar

@merompetehla UFW and firewalld provide a higher level of control, which means that they are quicker to learn, easier for simple tasks but harder to use in more granular levels. Their setup is translated into iptables rules at the end. With Iptables or its successor Nftables, you'll need to invest a bit more time to learn but have a more granular level of control at the end. I hope this helps.

IceFoxX,

You could use it together with opensnitch

Quazatron,
@Quazatron@lemmy.world avatar

How often are you going to be managing ports?

Just use any tool you like, all they do is fiddle with the Kernel’s filter table.

nickwitha_k,

IMO firewalld because it’s going to be more portable knowledge.

Varen,
Varen avatar

Iptables. Because in the end its iptables, so I learned it from the beginning „the right way“ and i am therefore not locked into one or another

nickwitha_k,

This is even better than my answer.

swooosh,

if you use docker, docker ignores ufw rules

exu,

It’ll also ignore the default firewalld rules. IIRC it uses the internal zone instead

swooosh,

Good to know, thx

skullgiver, (edited )
@skullgiver@popplesburger.hilciferous.nl avatar

deleted_by_author

  • Loading...
  • swooosh,

    Thx for the correction

    zelifcam, (edited )
    @zelifcam@lemmy.world avatar

    deleted_by_author

  • Loading...
  • exu,

    Firewalld had, at least last time I checked, way more capabilities than UFW. Both are fine at being basic firewalls, but I don’t think you can build a router using just UFW.

    Firewalld allows some pretty advanced rules. I use it to redirect a bunch of web requests going to a certain address over a local ssh tunnel.

    BCsven,

    I found firewalld had so many options that it was a bit overwhelming at first, especially understanding how zones were actually meant to be used, and how each zone had a default handover for the unhandled traffic. But OpenSUSE has a GUI for it so I was able to make sense of it. UFW seemed pretty user friendly and atraight forward.

    yala,

    OS is xubuntu 24.04

    Ubuntu defaults to ufw. That, by itself, justifies the use of ufw in your case.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • linux@lemmy.ml
  • DreamBathrooms
  • everett
  • osvaldo12
  • magazineikmin
  • thenastyranch
  • rosin
  • normalnudes
  • Youngstown
  • Durango
  • slotface
  • ngwrru68w68
  • kavyap
  • mdbf
  • InstantRegret
  • JUstTest
  • ethstaker
  • GTA5RPClips
  • tacticalgear
  • Leos
  • anitta
  • modclub
  • khanakhh
  • cubers
  • cisconetworking
  • megavids
  • provamag3
  • tester
  • lostlight
  • All magazines