I’ve just made a new install of TW (rel: 20180320) and been unable to
install my printer. A new install yesterday of an older TW but then
fully updated gave no trouble. Looking at my notes, I see that I should
shut down the firewall whilst installing the printer, though I’m not
sure why this was unnecessary yesterday.
Shutting down the firewall used to be a piece of cake with YaST but I’m
completely baffled by this new tool in YaST for tinkering with
firewalld. Where can I find nice friendly “on” and “off” buttons?
On 26/03/18 17:32, Graham P Davis wrote:
> I’ve just made a new install of TW (rel: 20180320) and been unable to
> install my printer. A new install yesterday of an older TW but then
> fully updated gave no trouble. Looking at my notes, I see that I should
> shut down the firewall whilst installing the printer, though I’m not
> sure why this was unnecessary yesterday.
>
> Shutting down the firewall used to be a piece of cake with YaST but I’m
> completely baffled by this new tool in YaST for tinkering with
> firewalld. Where can I find nice friendly “on” and “off” buttons?
>
>
Solved - I think.
No sign of any user-friendly buttons so used commands -
sudo systemctl stop firewalld
and later -
sudo systemctl start firewalld
Unfortunately, as soon as I’d started up the firewall after getting the
printer recognised and configured, starting up the firewall again
blocked all printing. After a fair bit of floundering, I found the
firewalld website and read a bit about zones. I then changed the default
zone from “public” to “home”. Almost immediately, the printer fired up
and spat out a queued print. I hope that was the right procedure to
follow but at least I can now print.
Why do “improvements” usually mean more complications?
AFAIU, the default firewalld firewall rules only apply to the ‘public’ zone anyway, so unless you really need an active firewall, you’re best to disable it anyway. That will depend on your exact situation of course.
On 26/03/18 22:26, deano ferrari wrote:
>
> Cloddy;2860311 Wrote:
>> On 26/03/18 17:32, Graham P Davis wrote:
>>> I’ve just made a new install of TW (rel: 20180320) and been unable to
>>> install my printer. A new install yesterday of an older TW but then
>>> fully updated gave no trouble. Looking at my notes, I see that I
>> should
>>> shut down the firewall whilst installing the printer, though I’m not
>>> sure why this was unnecessary yesterday.
>>>
>>> Shutting down the firewall used to be a piece of cake with YaST but
>> I’m
>>> completely baffled by this new tool in YaST for tinkering with
>>> firewalld. Where can I find nice friendly “on” and “off” buttons?
>>>
>>>
>>
>> Solved - I think.
>>
>> No sign of any user-friendly buttons so used commands -
>> sudo systemctl stop firewalld
>> and later -
>> sudo systemctl start firewalld
>>
>> Unfortunately, as soon as I’d started up the firewall after getting the
>> printer recognised and configured, starting up the firewall again
>> blocked all printing. After a fair bit of floundering, I found the
>> firewalld website and read a bit about zones. I then changed the default
>> zone from “public” to “home”. Almost immediately, the printer fired up
>> and spat out a queued print. I hope that was the right procedure to
>> follow but at least I can now print.
>>
>> Why do “improvements” usually mean more complications?
>>
> AFAIU, the default firewalld firewall rules only apply to the ‘public’
> zone anyway, so unless you really need an active firewall, you’re best
> to disable it anyway. That will depend on your exact situation of
> course.
>
Yes, I probably don’t need it as at least one of my upstream routers has
a firewall running but I have a nervous tendency to go for
belt-and-braces approaches wherever I can.
As for the firewalld rules, switching default zone from “public” to
“home” allows mdns, Samba and SSH services in addition to the
dhcpv6-client which is the only one allowed by “public”.