On 07/15/2014 08:25 PM, Florian La Roche wrote:
Hello Eero Volotinen,
On Tue, Jul 15, 2014 at 08:59:14PM +0300, Eero Volotinen wrote:
Hi List,
Are you really using firewalld and network-manager on Centos 7 production servers or old way disabling network manager and using pure iptables like on C6?
I tried to disable NetworkManager, but then ran into the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=1105770
Instead of adjusting the file, I have now switched over to NetworkManager (even for local static routes).
For iptables I'd rather stay with static rules, so iptables is the right thing for me...
(Next item is tuned, which also looks a bit overkill to keep running.)
Best regards,
Florian La Roche
NetworkManager does not fully support Bridge interfaces, so since I use (one for now) C7 server for KVM host, I disabled it and use network instead.
I will also use shorewall instead of Firewalld, at least until I can understand how it works (stupid looking thing without obvious way of using it).