{% extends "base.html" %} {% comment %} # # This file is part of Plinth. # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU Affero General Public License as # published by the Free Software Foundation, either version 3 of the # License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Affero General Public License for more details. # # You should have received a copy of the GNU Affero General Public License # along with this program. If not, see . # {% endcomment %} {% block main_block %}

Firewall is a network security system that controls the incoming and outgoing network traffic on your {{ cfg.box_name }}. Keeping a firewall enabled and properly configured reduces risk of security threat from the Internet.

The following is the current status:

{% if firewall_status = 'not_installed' %}

Firewall is not installed. Please install it. Firewall comes pre-installed with {{ cfg.box_name }}. On any Debian based system (such as {{ cfg.box_name }}) you may install it using the command 'aptitude install firewalld'

{% elif firewall_status = 'not_running' %}

Firewall daemon is not running. Please run it. Firewall comes enabled by default on {{ cfg.box_name }}. On any Debian based system (such as {{ cfg.box_name }}) you may run it using the command 'service firewalld start' or in case of a system with systemd 'systemctl start firewalld'

{% else %} {% for service in services %} {% for port in service.ports %} {% endfor %} {% endfor %}
Service/Port Status
{{ service.name }} {% if service.is_enabled %} Enabled {% else %} Disabled {% endif %}
{{ port }} {% if port in internal_enabled_services and port in external_enabled_services %} Permitted {% elif port in internal_enabled_services %} Permitted (internal only) {% elif port in external_enabled_services %} Permitted (external only) {% else %} Blocked {% endif %}

The operation of the firewall is automatic. When you enable a service it is automatically permitted in the firewall and you disable a service is automatically disabled in the firewall.

{% endif %} {% endblock %}