Fedora Atomic Host (and derivatives) will now include the
package in the base OSTree that is tested, delivered, and released
every two weeks. Existing users should observe no change as it won’t
be enabled by default.
Firewalld in Atomic Host
In the past we have had requests to have
firewalld in Atomic Host
to enable a better interface into firewall management for
administrators and management software. It turns out that if you have
lots of rules to manage, or even multiple pieces of software trying to
manage different sets of rules on a single system, then
becomes a limitation pretty quickly.
Atomic Host users do have the ability to package layer
but live changes to the host
are currently experimental. Since rebooting during system provisioning
in certain environments is not desirable, and
relatively small, the Fedora Atomic Working Group
decided to include
firewalld in the
In order to not affect existing users the
firewalld service will be
disabled by default. Existing users should observe no change in behavior.
Users who want to use
firewalld can enable/start the service and start
using it immediately.
Read More »