2

I have configured routers/firewalls several times in the past with nftables. I'm now setting up a Linux router that will be managed by other people with less experience, so I figured Webmin would be a good choice.

I'm having trouble correlating what the UI presents with the requirements of setting up a router/firewall. Some things seem to be missing from the UI:

  • Configuring rules for incoming vs outgoing connections. The UI just defines zones and rules with no provision for specifying direction.
  • Configuration for NAT seems to be missing completely.
  • What to do with unnecessary zones. If I choose "Selected interfaces" and then uncheck all interfaces and apply, it reverts to "All interfaces". Is the intent here just to delete any zones you're not using?

Question: Am I missing something basic about Webmin's UI for firewalld, or is it only a partial implementation?

Ex Umbris
  • 854
  • 7
  • 24
  • IMHO on Debian 11 - It seems, that webmin still can not handle `nftables` in 2023.05 but reverting to `iptables-legacy`, causing trouble. So yes, `firewalld` seems to be a good choice at first site, but **be warned** : `apt install firewalld` completely locked out of my system, so do no start installing from SSH login! (because it will be terminated during install and probably cause a half-install with broken rule setup.) – SzakiLaci Jun 03 '23 at 10:31

0 Answers0