Re: [PATCH] firewall-manager: allow dhcpv6-client service



On 03/06/2012 09:03 AM, Tore Anderson wrote:
Hi Jiri,

Tell firewall to allow dhcpv6-client service for the given zone prior
to starting dhcpv6 client. We don't need to wait for the response
because dhcp client keeps sending Solicit messages until it gets the
response (i.e. until firewall opens the port).
Thank you very much for looking into this, it is high time DHCPv6 is
functional out of the box in Fedora.
Yes and thank *you* to the outstanding work you've done in RHBZ#538499.

I tested the patch on top of the
NetworkManager-0.9.3.995-0.4.git20120302 SRPM, and it applies and
compiles without any problems. However, it doesn't actually work for me
- I get the «opening port for dhcpv6 client skipped (firewall not
running)» message in my logs.

I couldn't figure out how I go about starting the firewall-manager
service (suggestions are welcomed), but in any case, if it isn't enabled
by default, then DHCPv6 isn't going to work out of the box, which means
no actual progress has been made. Or am I missing something here?

We are talking about FirewallD [1] which should [2] be the default firewall solution in F17. However the latest version in F17 doesn't include the dhcpv6-client service [3]
yet but some updates will follow soon.

[1] https://fedorahosted.org/firewalld/
      https://fedoraproject.org/wiki/FirewallD/
[2] https://fedorahosted.org/fesco/ticket/805
[3] https://fedorahosted.org/pipermail/firewalld-devel/2012-February/000001.html

--
Jiri


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]