Migrate from iptables to firewalld (!1) · Merge requests · Nest / Puppet

James Lee requested to merge firewalld into main Feb 22, 2022

Following implementation of the Podman reload workaround described at https://github.com/containers/podman/issues/5431#issuecomment-1022121559, all Nest hosts have been migrated to firewalld one-by-one, resolving issues along the way such as NAT reflection and missing kernel modules. Compatibility with libvirt, Podman, and fail2ban has been confirmed, but CRI-O has not yet been tested.

firewalld is much nicer to work with from Puppet than iptables.

Closes #36 (closed)

Migrate from iptables to firewalld

Merge request reports