merompetehlawhat's better to manage ports? ufw or firewalld?
OS is xubuntu 24.04
Ubuntu defaults to ufw. That, by itself, justifies the use of ufw in your case.
zelifcamI use UFW personally but firewalld professionally. UFW ships with Debian based and firewalld with RHEL.
If suppose I might like UFW’s syntax a bit more.
The documentation is there for everyone to see. You can easily see what it takes to accomplish your task with both. Honestly though, why not just try it for yourself and come to your own conclusion.
exuFirewalld had, at least last time I checked, way more capabilities than UFW. Both are fine at being basic firewalls, but I don’t think you can build a router using just UFW.
Firewalld allows some pretty advanced rules. I use it to redirect a bunch of web requests going to a certain address over a local ssh tunnel.
Okay?
I found firewalld had so many options that it was a bit overwhelming at first, especially understanding how zones were actually meant to be used, and how each zone had a default handover for the unhandled traffic. But OpenSUSE has a GUI for it so I was able to make sense of it. UFW seemed pretty user friendly and atraight forward.
if you use docker, docker ignores ufw rules
It’ll also ignore the default firewalld rules. IIRC it uses the
internal zone instead
Good to know, thx
VarenIptables. Because in the end its iptables, so I learned it from the beginning „the right way“ and i am therefore not locked into one or another
This is even better than my answer.
IMO firewalld because it’s going to be more portable knowledge.
QuazatronHow often are you going to be managing ports?
Just use any tool you like, all they do is fiddle with the Kernel’s filter table.
𞋴𝛂𝛋𝛆Network Filter Tables (NFT) is the current system. wiki.nftables.org/wiki-nftables/…/Main_Page
I like firewalld. Its also used on many enterprise distros (RHEL, SLES).
But if you just have to open one port for something, just use what’s installed on your distro.
I like iptables + opensnitch