Please be patient, as I am a Noob. I am trying to setup a firewall and have followed the Clear Linux guide without success (https://docs.01.org/clearlinux/latest/guides/network/firewall.html). When I check the firewall-cmd --state, I receive the “failed” message.
When I check status of firewalld, I receive:
● firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled)
Active: active (running) since Tue 2020-02-25 14:00:27 EST; 33min ago
Docs: man:firewalld(1)
Main PID: 490 (python3)
Tasks: 2 (limit: 6855)
Memory: 52.4M
CGroup: /system.slice/firewalld.service
└─490 /usr/bin/python /usr/bin/firewalld --nofork --nopid
Feb 25 14:00:21 clr-afda79f43d974670969009622f748d9a systemd[1]: Starting firewalld - dynamic firewall daemon...
Feb 25 14:00:27 clr-afda79f43d974670969009622f748d9a systemd[1]: Started firewalld - dynamic firewall daemon.
Feb 25 14:00:30 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: '/usr/bin/nft add table inet firewalld' failed:
Feb 25 14:00:30 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: '/usr/bin/nft add table inet firewalld' failed:
Feb 25 14:00:30 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: COMMAND_FAILED: '/usr/bin/nft add table inet firewalld' failed:
Feb 25 14:01:12 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: '/usr/bin/nft add chain inet firewalld filter_IN_home' failed:
Feb 25 14:01:12 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: '/usr/bin/nft add chain inet firewalld filter_IN_home' failed:
Feb 25 14:01:12 clr-afda79f43d974670969009622f748d9a firewalld[490]: ERROR: COMMAND_FAILED: '/usr/bin/nft add chain inet firewalld filter_IN_home' failed:
Your help/suggestions will be greatly appreciated, as I feel “naked” without a firewall running. Reading here, you do not plane on trying to implement UFW/GUFW, which has worked well using other Linux distributions. Starting a firewall in MacOS and WIndows10. Setting up a simple IPFW firewall in FreeBSD was also a relatively simple thing, once I found guides online.