this post was submitted on 29 May 2024
21 points (100.0% liked)

Linux

48069 readers
765 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
 

I'm trying to open a port for transmission but before I get to know either of the 2 options I'd like to know what you recommend and why.

OS is xubuntu 24.04

all 20 comments
sorted by: hot top controversial new old
[–] [email protected] 1 points 5 months ago

I like iptables + opensnitch

[–] [email protected] 9 points 5 months ago

I like firewalld. Its also used on many enterprise distros (RHEL, SLES).

But if you just have to open one port for something, just use what's installed on your distro.

[–] [email protected] 2 points 5 months ago

Network Filter Tables (NFT) is the current system. https://wiki.nftables.org/wiki-nftables/index.php/Main_Page

[–] [email protected] 5 points 5 months ago* (last edited 5 months ago) (1 children)

@merompetehla UFW and firewalld provide a higher level of control, which means that they are quicker to learn, easier for simple tasks but harder to use in more granular levels. Their setup is translated into iptables rules at the end. With Iptables or its successor Nftables, you'll need to invest a bit more time to learn but have a more granular level of control at the end. I hope this helps.

[–] [email protected] 1 points 5 months ago

You could use it together with opensnitch

[–] [email protected] 6 points 5 months ago

How often are you going to be managing ports?

Just use any tool you like, all they do is fiddle with the Kernel's filter table.

[–] [email protected] 4 points 5 months ago

IMO firewalld because it's going to be more portable knowledge.

[–] [email protected] -1 points 5 months ago (2 children)

Iptables. Because in the end its iptables, so I learned it from the beginning „the right way“ and i am therefore not locked into one or another

[–] [email protected] 1 points 5 months ago

This is even better than my answer.

[–] [email protected] 11 points 5 months ago (2 children)

if you use docker, docker ignores ufw rules

[–] [email protected] 4 points 5 months ago (1 children)

It'll also ignore the default firewalld rules. IIRC it uses the internal zone instead

[–] [email protected] 1 points 5 months ago

Good to know, thx

[–] [email protected] 2 points 5 months ago

I found firewalld had so many options that it was a bit overwhelming at first, especially understanding how zones were actually meant to be used, and how each zone had a default handover for the unhandled traffic. But OpenSUSE has a GUI for it so I was able to make sense of it. UFW seemed pretty user friendly and atraight forward.

[–] [email protected] 4 points 5 months ago

OS is xubuntu 24.04

Ubuntu defaults to ufw. That, by itself, justifies the use of ufw in your case.