On Mon, Jul 6, 2015, at 01:34 PM, Eric Paris wrote: > On Mon, 2015-07-06 at 12:53 -0400, Colin Walters wrote: > > Currently, firewalld is the default for Fedora. However, both Docker > > and Kubernetes do not yet know how to talk to it. Work is underway > > on > > that, but in the meantime, iptables-services is an absolutely tiny > > package, and the cost of carrying it forward is very small. > > Docker should support firewalld properly now. (Not so much kubernetes > though)
Yeah. The kube firewalling story is going to be an important one to solve too. But there are definite use cases for persistent manually-maintained firewalls, so pushed to master.
