Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Render, but don't apply, rules - for debugging #1283

Open
jcpunk opened this issue Jan 18, 2024 · 0 comments
Open

Render, but don't apply, rules - for debugging #1283

jcpunk opened this issue Jan 18, 2024 · 0 comments
Labels
feature New feature or enhancement.

Comments

@jcpunk
Copy link
Contributor

jcpunk commented Jan 18, 2024

What would you like to be added

A switch to firewall-cmd/firewall-offline-cmd to print out the actual nftables/iptables rules that would be applied - but don't actually apply them.

Why is this needed

I've got a fairly ugly mash of zones, policies, rich rules, and ipsets. Somewhere along the line I messed up and locked myself out of the box. I can't see what I did wrong in the firewalld configs. When I load them so that the rules are active, I'm locked out. Having a clean way to look at what would be applied, but not actually apply them would drastically simplify my troubleshooting.
@jcpunk jcpunk added the feature New feature or enhancement. label Jan 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature New feature or enhancement.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jcpunk