Do you know how to use the firewall service Suse features? If not, you’re in luck! In this blog post, we’ll explain how to set up and use the firewall service on your Suse system. Keep reading for more information.
Firewall Service Suse Features
Firewall Service Suse is available as a feature of SUSE Linux Enterprise Server. It consists of the following components:
Linux IPtables is a component that is responsible for managing the firewall rules. It provides a command line interface (CLI) and a browser interface for the management of the rules. From version 9.1, fw denies access to the CLI by default, to ensure compliance with security policies.
Also, it includes an automatic update function that downloads new rules from the SUSE Security Portal. It makes them available with the next check and commits. The automatic update function can be disabled so that all changes to firewall rules are made manually.
The Firewall-cmd tool makes it possible to manage the firewall rules using a command line interface or script. So, the commands of firewalld can also be used. To use this tool on SLES 12, you must install the packagefirewall-cmd-suse, which provides a compatibility layer between web application Suse and firewalld.
Firewall Configuration Tool
The Firewall-config tool makes it possible to configure and manage the firewall rules using a graphical user interface. So, the program includes wizards that guide you through the setup of your firewall. Also, the SuSEfirewall2 package is a Linux packet filter that has been included in SUSE Linux Enterprise since version 8.0.
The package is based on the popular iptables utility, which was developed by the Netfilter project at the Helsinki University of Technology (TKK). SuSEfirewall2 is a complete rewrite of SuSEfirewall (SFW), which was based on chains and included in SUSE Linux since version 6.4.
The SuSEfirewall2 package features:
The Linux Firewall with IPTables is a component that is responsible for managing the firewall rules. It provides a command line interface (CLI) and a browser interface for the management of the rules. From version 9.1, fw denies access to the CLI by default, to ensure compliance with security policies.
However, SuSEfirewall2 may be used as an alternative to Firewall Service Suse. So, the package is available for SUSE Linux Enterprise Server 11 SP3 and above. It has been removed from SUSE Linux Enterprise Server 12 and does not have any further releases planned.
The SuSEfirewall2 package contains the following components: firewall2-base
SuSEfirewall2 Key Features
SuSEfirewall2 was originally based on the ipchains firewall, which was included in early versions of SUSE Linux. The original version of SuSEfirewall2, which was included in SUSE Linux from version 7.1 to 10.0, was based on ipchains version 2.4. It did not support IPv6 and did not support stateful packet filtering.
SuSEfirewall2 has been designed for high performance and security. To achieve this, it does not use rule chains or chains and rules at all, but only a single list of rules. A key feature of SuSEfirewall2 is its use of connection tracking when creating a rule set.
If a connection has been initiated from inside the server, then all related packets are automatically allowed through the firewall. This is without any further test on the packets themselves. Also, the SuSEfirewall2 package is available for SUSE Linux Enterprise Server 11 SP3 and above.