On Thu, October 30, 2014 12:14, Marko Vojinovic wrote: > > > I have a feeling that it's just the case of lazy sysadmins who don't > want to bother reading the man page for firewall-cmd. They seem to be > the ones who are not informed. Moreover, the lockdown and panic options > seem to be an improvement in functionality, which does not exist if you > only use iptables. There might also be other functionality upgrades, I > haven't studied firewalld in detail yet. > With respect, having to learn new ways of accomplishing familiar tasks and being forced to discover and apply new solutions to problems long solved does not, in my opinion, make efficient use of limited and expensive resources. Namely said 'lazy' sysadmins time. Add to that the consideration that for small and medium size enterprises the 'sysadmin' often has many other duties more pertinent to earning income for his/her employer. SO resentment reasonably might be expected from some quarters, I think. That said, I have just started working with CentOS-7 and frankly I do not see what all the brouhaha is all about. The default Gnome desktop seems satisfactory to me. That opinion may change when I try and customize it somewhat but for now, meh. It looks to me like a pale imitation of the OSX desktop with the convenience of the launcher dock removed. The IPTables replacement is not particularly difficult to work with either. I will wait to form an opinion about systemd after I have some experience with it. I am hoping that it cannot be any worse than upstart. For now I have managed to get ZFS built and installed on the test box. This afternoon I will try and get the entire file-system converted to ZFS on a LUKS substrate and see if that works. The Lazy Sysadmin, -- *** E-Mail is NOT a SECURE channel *** James B. Byrne mailto:ByrneJB at Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3