So I’m trying to determine if my Leap 15.4 actually has a working firewall or not.
If I go graphical into YaST > Security and Users > Firewall, the Start-Up tab says the Service Configuration status is Active. Then if I look at the Zones, some will have service(s) listed under the Allowed box in the Services tab while others don’t. But for all Zones, the Ports tab fields are empty.
Via terminal, I learned this:
u@localhost:~> systemctl status *firewall*
● firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled)
Active: active (running) since Wed 2023-08-23 22:05:47 PST; 1h 7min ago
Docs: man:firewalld(1)
Main PID: 1343 (firewalld)
Tasks: 2 (limit: 4915)
CGroup: /system.slice/firewalld.service
└─ 1343 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid
But when I check iptables and ip6tables, I don’t see any rules:
u@localhost:~> sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
u@localhost:~> sudo ip6tables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Now my questions are:
-
Is the firewall in YaST different from firewalld and iptables?
-
If they are different from each other, which one should I bother configuring?
-
Looking back at my Windows background, is iptables/ip6tables synonymous to the base filtering engine in the sense that it’s simply the underlying engine used by front-end programs to perform network filtering?
-
Based on the information I have shared above, do I have a firewall actually shielding me from unwanted traffic or is my Leap box almost like a brand new MacBook shipped with the firewall turned off be default?