FedSearch - Federated network search engine

Frehi · @frehi

86 followers · 1308 posts · Server fosstodon.org

OK, I'm going back from #firewalld to #shorewall, at least on more complicated configurations. Firewalld is too confusing to me and is missing features I need (like, filtering on bridges).

#firewalld #shorewall

Last updated 1 year ago

Original post

Frehi · @frehi

77 followers · 1008 posts · Server fosstodon.org

@adam
It's possible to use hostnames with #shorewall. However resolving only happens at firewall initialization time, so if DNS changes later on, it will not take this into account, which also makes it unusable for services which are distributed on cloud services. And if DNS resolving does not work because at initialization time, the firewall will fail to load. So in practice it's not really usable.

#shorewall

Last updated 1 year ago

Original post

ubbofh · @ubbofh

3 followers · 23 posts · Server social.vivaldi.net

I would like to lock down my "smart" #LG TV (network wise) as much as possible.

The relevant router is Linux with #iptables based #shorewall. My idea is to reject everything and #whitelist only actually used services.

This approach is not trivial as CDNs like the Amazon clound, Google and services like Cloudflare are being used.

Any ideas or pointers are welcome!

#smarttv #firewall

#lg #iptables #shorewall #whitelist #smarttv #firewall

Last updated 2 years ago

Original post

Michael Gurski · @emag

31 followers · 298 posts · Server strangeplace.me

@greppy I prefer keeping the pi-hole off the perimeter if I can help it, personally.

I've done the #Debian thing before (and moved to #Shorewall from iptables at some point. These days, I'm using a #Synology RT2600ac as mine, having upgraded from an #openwrt flashed router.

#debian #shorewall #synology #openwrt

Last updated 2 years ago

Original post