I am using this image from AWS MarketPlace.
The Problem is that centos 7 is supposed to come with firewalld instead of iptables.
But firewalld is not installed on it but iptables is installed. Why is that. What other changes are there for this particular image that centos is providing that are supposed to be on regular centos 7 images.
Asked
Active
Viewed 3,030 times
4
Saad Masood
- 179
- 3
- 10
-
You can always install firewalld yourself. – Michael Hampton Sep 09 '15 at 08:25
-
Yes that I can do. But I want to understand why doesn't it comes with the image when it's supposed to be or is my assumption wrong? – Saad Masood Sep 09 '15 at 08:26
-
And what other such differences are there. – Saad Masood Sep 09 '15 at 08:26
-
@SaadMasood An addition is of course already mentioned in the highlights *"Starting with CentOS-7 we now include cloud-init support in all CentOS AMI's"* and you can of-course simply check what is actually installed once you have deployed an image... – HBruijn Sep 09 '15 at 08:39
1 Answers
6
You get exactly the image the description says:
... built with a minimal profile ... The image contains just enough packages to run within AWS, bring up an SSH Server and allow users to login.
A reason not to enable/pre-configure any firewall is of course that it is not a requirement in many deployment scenario's and an image provides the most flexibility when people only need to add what they need rather than also remove what they don't...
-
-
1
-
1So there are iptables commandline program, iptables service and firewalld service, ufw etc. only iptables commandline program talks to netfilter kernel module, all others are just configuration tools. Though when firewalld is installed it takes precedence over all other tools even iptables commandline program. – Kishor Pawar Aug 09 '16 at 14:00