Do I need a firewall for my fedora 38?

Harry_Houdini@lemmy.dbzer0.com to Linux@lemmy.ml – 39 points –

Do I need a firewall for my fedora 38?

I'm new to Linux, previously been on Windows where I used defender + Windows firewall. Now I'm on fedora which also have its firewall called firewalld. Are those sufficient, or do I need any other solutions for my security?

17

You are viewing a single comment
View all comments

I treat all guests on the network as potentially hostile, so I enable firewalls on all of my hosts.

I believe that Fedora's firewall is enabled by default, but it leaves open ports 1025-65535/tcp and 1025-65535/udp.

To lock down some sane defaults:

sudo firewall-cmd --permanent --remove-port=1025-65535/tcp
sudo firewall-cmd --permanent --remove-port=1025-65535/udp
sudo firewall-cmd --reload

Verify allowed ports with:

sudo firewall-cmd --list-ports

See also:

PS: if you have a Steam Link, you'll want to open these ports for connectivity:

sudo firewall-cmd --permanent --add-port=27031/udp  # steam remote play
sudo firewall-cmd --permanent --add-port=27036/udp  # steam remote play
sudo firewall-cmd --permanent --add-port=27036/tcp  # steam remote play
sudo firewall-cmd --permanent --add-port=27037/tcp  # steam remote play

That is a really solid tip! Don't mind me if I yoink it.

You can also achieve this by setting up VLAN for guests

1 more...