firewalld vs iptables - when to use which [closed]

networking linux centos fedora firewalld

Solution 1:

As firewalld is based on XML configuration, some might think that it's easier to configure the firewall in a programmatic manner. This can be achieved by iptables just as well, but with a different way, which is not XML. If you are already familiar with the way iptables works, why would you migrate all your configuration to firewalld?

If you consider your largest iptables firewall rule set, how often do you think you would benefit from the dynamic aspect of firewalld? In most cases the performance of iptables is never the issue. In most cases where the performance of iptables is an issue can be fixed by using ipset based source/destination IP sets.

It is a different debate whether or not you should use NetworkManager.

Related

Resume command running in dropped SSH session
Can one require "this OR that" package in an RPM spec file?
Equivalent of LogRotate for Windows?
What is the best way to create backup in an existing gitlab and restore the same backup in a new gitlab server? [closed]
LVM snapshots vs. file system snapshots
Forward Custom Header from Nginx Reverse Proxy
What is the actual difference between Cat-5 and Cat-5e?
How do I prevent Linux from freezing when out of memory?
How to rewrite the domain part of Set-Cookie in a nginx reverse proxy?
How can I execute a bash function with sudo?
Should I RAID my SSDs?
Make scp always overwrite or create directory