How to Install FirewallD GUI on Rocky Linux EL9 or EL8

FirewallD is a highly regarded firewall solution utilized by many Rocky Linux users. It provides robust control over the firewall’s accessibility to ports, services, and protocols. Despite the simplicity of its command line interface, some individuals may prefer a graphical user interface for firewall management.

The FirewallD GUI was designed to provide an easy-to-use and visually appealing interface for managing your firewall on Rocky Linux 9 or 8. This comprehensive guide will guide you through installing and utilizing FirewallD GUI, helping you effectively manage and secure your online presence through firewall protection.

Step 1: Update Rocky Linux

Before proceeding, make sure to update your system with the latest packages. Neglecting to do so could potentially lead to problems during the installation process or with the overall functioning of your system.

sudo dnf upgrade --refresh

After successfully updating and upgrading your packages, proceed with the installation of FirewallD.

Step 2: Install FirewallD

FirewallD is typically pre-installed on Rocky Linux by default. To verify its presence, run the following command.

sudo firewall-cmd --version

The command result should display a version number indicating the successful installation of FirewallD on your system.

For users who either do not have FirewallD installed or have previously uninstalled the package, the following command can be executed to install it.

sudo dnf install firewalld

Step 3: Enable FirewallD

Upon verifying or re-installing FirewallD on your system, enabling the service is crucial. The recommended approach is automatically activating the firewall software during system boot and starting it immediately. This can be done using a single, all-encompassing command, as shown below.

sudo systemctl enable firewalld --now

After enabling the firewall service, it’s important to check its status to confirm that everything is functioning properly and there are no errors present.

systemctl status firewalld

Example output:

As previously mentioned, the backend of FirewallD should now be active and functioning correctly.

Step 4: Install FirewallD GUI

The next step is to install the graphical user interface (GUI) for FirewallD. This can be initiated by using the following command.

sudo dnf install firewall-config

For those using the KDE desktop environment, it’s possible to install the KDE control panel specifically for FirewallD.

sudo dnf install plasma-firewall-firewalld

Step 5: Launch FirewallD GUI

After completing the installation, you can launch the GUI by accessing the following application path.

Activities > Show Applications > Firewall

Example:

Once you have launched the FirewallD GUI, you can start experimenting with its firewall settings. The main view presents you with different zones, such as “public,” and various sections to manage services, ports, and protocols. To fine-tune your firewall configuration, you can utilize the “View” and “Options” menus. These menus offer additional settings and selections, allowing you to adjust the firewall to your needs.

Below is a list of recommended settings to change or set when getting started with the FirewallD GUI:

• Zones: You can set the firewall to different zones (e.g., public, trusted, dmz, etc.) based on the level of trust you have in the network. For example, you may set your home network as “trusted” and public networks as “public.”
• Services: You can specify which services (e.g., http, ssh, ftp, etc.) are allowed or denied access through the firewall. For example, you may allow access to the http service and deny access to the telnet service.
• Ports: You can configure which ports (e.g., 80, 22, 21, etc.) are open or closed on the firewall. For example, you may open port 80 for HTTP traffic and close port 23 for Telnet traffic.
• Protocols: You can select which protocols (e.g., tcp, udp, icmp, etc.) are allowed or denied access through the firewall. For example, you may allow access to the tcp protocol and deny access to the udp protocol.

By adjusting these settings, you can ensure that your firewall is configured to your specific needs and secure your online presence.

Example of FirewallD GUI:

Additional Commands & Tips

Update FirewallD GUI

Updating the FirewallD GUI is a straightforward process; all you have to do is run the standard system update command as you would when checking for updates in your system. This is because you installed the GUI using the DNF package manager.

sudo dnf upgrade --refresh

Remove (Uninstall) FirewallD GUI

Those who no longer wish to use the FirewallD GUI can utilize the following command to remove it from their system.

sudo dnf remove firewall-config

The following steps can be followed for those using the KDE desktop environment who wish to remove the FirewallD control panel.

sudo dnf remove plasma-firewall-firewalld

Conclusion

In conclusion, installing FirewallD GUI on Rocky Linux is a straightforward process. By updating your system, re-installing FirewallD, enabling the service, installing the GUI, and using it to manage your firewall, you can secure your online presence efficiently. The process involves using the command line and graphical interface to manage firewall rules and settings. Whether you’re a beginner or an experienced user, FirewallD GUI provides a visual and user-friendly interface for managing your firewall on Rocky Linux. With regular updates and proper maintenance, you can be sure that your system remains secure and protected.

Frequently Asked Questions