File: //usr/lib/python2.7/site-packages/sos/plugins/firewalld.py
# Copyright (C) 2014 Red Hat, Inc. Jamie Bainbridge <[email protected]>
# Copyright (C) 2014 Red Hat, Inc. Bryn M. Reeves <[email protected]>
# This file is part of the sos project: https://github.com/sosreport/sos
#
# This copyrighted material is made available to anyone wishing to use,
# modify, copy, or redistribute it subject to the terms and conditions of
# version 2 of the GNU General Public License.
#
# See the LICENSE file in the source distribution for further information.
from sos.plugins import Plugin, RedHatPlugin
class FirewallD(Plugin, RedHatPlugin):
"""Firewall daemon
"""
plugin_name = 'firewalld'
profiles = ('network',)
packages = ('firewalld',)
def setup(self):
self.add_copy_spec([
"/etc/firewalld/firewalld.conf",
"/etc/firewalld/*.xml",
"/etc/firewalld/icmptypes/*.xml",
"/etc/firewalld/services/*.xml",
"/etc/firewalld/zones/*.xml",
"/etc/sysconfig/firewalld",
"/var/log/firewalld",
])
# collect nftables ruleset
self.add_cmd_output("nft list ruleset")
# use a 10s timeout to workaround dbus problems in
# docker containers.
self.add_cmd_output([
"firewall-cmd --list-all-zones",
"firewall-cmd --direct --get-all-chains",
"firewall-cmd --direct --get-all-rules",
"firewall-cmd --direct --get-all-passthroughs",
"firewall-cmd --permanent --list-all-zones",
"firewall-cmd --permanent --direct --get-all-chains",
"firewall-cmd --permanent --direct --get-all-rules",
"firewall-cmd --permanent --direct --get-all-passthroughs",
"firewall-cmd --state",
"firewall-cmd --get-log-denied"
], timeout=10)
# vim: set et ts=4 sw=4 :