Hello Folks, 20 year Linux user, and I can't for the life of me get firewalld to work:
sudo systemctl status firewalld
[sudo] password for me:
○ firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; preset: en>
Active: inactive (dead) since Mon 2023-02-27 14:14:23 MST; 1min 43s ago
Duration: 327ms
Docs: man:firewalld(1)
Process: 66527 ExecStart=/usr/sbin/firewalld --nofork --nopid (code=exited,>
Main PID: 66527 (code=exited, status=0/SUCCESS)
CPU: 326ms
Feb 27 14:14:23 me-82b5 systemd[1]: Started firewalld.service - firewalld - dyn>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: 'python-nftables' failed: inte>
JSON blob:
{"nftables": [{"metainfo": {"json_sch>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: Failed to load user configurat>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: 'python-nftables' failed: inte>
JSON blob:
{"nftables": [{"metainfo": {"json_sch>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: COMMAND_FAILED: 'python-nftabl>
I've spent a good number of hours trying to make it run, but no joy....
Current settings:
systemctl status ufw firewalld
○ ufw.service - Uncomplicated firewall
Loaded: loaded (/lib/systemd/system/ufw.service; enabled; preset: enabled)
Active: inactive (dead) since Mon 2023-02-27 14:31:10 MST; 5s ago
Duration: 35min 3.003s
Docs: man:ufw(8)
Process: 111566 ExecStop=/lib/ufw/ufw-init stop (code=exited, status=0/SUCC>
Main PID: 998 (code=exited, status=0/SUCCESS)
CPU: 1ms
Warning: some journal files were not opened due to insufficient permissions.
○ firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; preset: en>
Active: inactive (dead) since Mon 2023-02-27 14:14:23 MST; 16min ago
Duration: 327ms
Docs: man:firewalld(1)
Main PID: 66527 (code=exited, status=0/SUCCESS)
CPU: 326ms
lines 1-18/18 (END)
Your running both UFW and Firewalld?
Try
ufw enable
It will likely fail but might tell you why. I can't help much with firewalld. Never used it.
UFW works ok and starts, but I want firewalld, I've just grown a custom to it over the years.
I was hoping that someone had some insight on this. This is the the only Debian system firewalld chokes on.
Thank You eriefisher for the assist
It might be good to get more of the error lines, like
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: Failed to load user configurat>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: 'python-nftables' failed: inte>
It could give a better idea what might be going wrong.
python-nftables
does not exist in debian unstable
python3-nftables
I assume?
Quote from: towo on 2023/02/28, 20:15:52
python-nftables
does not exist in debian unstable
Good to know, I'll have to find a testing solution if possible.
[code]apt depends python3-nftables
python3-nftables
Depends: libnftables1 (= 1.0.6-2)
Depends: python3-jsonschema
Depends: <python3:any>
python3
[/code]
apt depends python-nftables
E: No packages found
Quote from: Pip on 2023/02/28, 16:57:30
It might be good to get more of the error lines, like
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: Failed to load user configurat>
Feb 27 14:14:23 me-82b5 firewalld[66527]: ERROR: 'python-nftables' failed: inte>
It could give a better idea what might be going wrong.
I've saved enough hopefully to help in a .txt
Thanks guys!
I also found shorewall is a no go, This is the strangest problem I've faced on Debian system....
What is the default firewall on Siduction? "I assume its iptables"
If I switch to a testing model:
systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; preset: en>
Active: active (running) since Thu 2023-03-02 06:41:10 MST; 46min ago
Docs: man:firewalld(1)
Main PID: 1038 (firewalld)
Tasks: 2 (limit: 9254)
Memory: 35.5M
CPU: 412ms
CGroup: /system.slice/firewalld.service
└─1038 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid
and
apt policy firewalld
firewalld:
Installed: 1.3.0-1
Candidate: 1.3.0-1
Version table:
*** 1.3.0-1 990
990 http://deb.debian.org/debian testing/main amd64 Packages
500 https://deb.kaisenlinux.org kaisen-rolling/main amd64 Packages
100 /var/lib/dpkg/status
1.3.0-1~bpo11+1 100
100 http://deb.debian.org/debian bullseye-backports/main amd64 Packages
deps
apt depends firewalld
firewalld
Depends: dbus
Depends: gir1.2-glib-2.0
Depends: gir1.2-nm-1.0
|Depends: polkitd
Depends: policykit-1
Depends: python3-dbus
Depends: python3-gi
Depends: python3-nftables (>= 0.9.3-2~)
Depends: python3-firewall (= 1.3.0-1)
Depends: <python3:any>
python3
Recommends: ipset
Recommends: iptables
Recommends: python3-cap-ng
I'll take it as firewalls are not so important here.
It's a pitty, I had such motivation for this OS's
Thanks for the efforts though.
Perhaps this would be relevant for you?
https://wiki.debian.org/nftables
Quote from: Pip on 2023/03/02, 23:19:52
Perhaps this would be relevant for you?
https://wiki.debian.org/nftables
Thanks Pip, I should have mentioned I spent a day or two on that link before posting here.
I'm going to do something that will make everyone cringe, as a last effort.
I'll report any relevant findings.
This has to do with this Distro IE:
systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; preset: en>
Active: active (running) since Fri 2023-03-03 07:40:23 MST; 44s ago
Docs: man:firewalld(1)
Main PID: 62899 (firewalld)
Tasks: 2 (limit: 9330)
Memory: 25.6M
CPU: 260ms
CGroup: /system.slice/firewalld.service
└─62899 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid
Mar 03 07:40:22 debian-unstable systemd[1]: Starting firewalld.service - firewa>
Mar 03 07:40:23 debian-unstable systemd[1]: Started firewalld.service - firewal>