Firewall packages?

I can’t find any mention of firewall configuration in the documentation.

I can’t find any packages apart from iptables

For example it would me handy to have ufw, since iptables is very obtuse to configure.

Clear Linux has no firewall when you install it. By default, all ports are open. By default, only SSH is listening.

What is your firewall use case?

Running a server, I just wanted to block all incoming + outgoing connections on all ports except the services I’m running. I’m reading up on iptables at the moment anyway, but one complication is Docker creates a bunch of iptables rules so I’ll have to boot up with Docker disabled, create and save the rules, and enable it again.

I wasn’t sure where to save the rules file, but I found /usr/lib/systemd/system/iptables-restore.service which loads from /etc/iptables.rules. I guess this should be documented somewhere eventually :slight_smile:

@ljmccarthy fair enough. Those locations/commands are part of iptables and not too unique to CL, so documentation for it hasn’t been a high priority for it so far. I added a request to get it documented though: https://github.com/clearlinux/clear-linux-documentation/issues/541

1 Like

These are standard and come from upstream. man iptables-save to start. Follow the SEE ALSO references therein to related documents.