Firewalld-nix: FirewallD for NixOS

Prince213 · February 18, 2025, 6:54am

Hello everyone,

I would like to introduce firewalld-nix that I’ve been working for the past few days, which contains:

a working firewalld derivation with working GUI applet
a NixOS module for declarative configurations

It’s not complete and has rough edges, but it should work for simple use cases now.

https://git.sr.ht/~prince213/firewalld-nix

As a side note, firewalld related issues is currently being tracked in

github.com/NixOS/nixpkgs

firewalld

opened 09:55PM - 26 Mar 22 UTC

cawilliamson

6.topic: nixos 0.kind: packaging request

**Project description** I'm really just wondering if there's any possibility Ni…xOS will adopt firewalld as a native firewall option? It seems odd that we have similar options like Shorewall packaged up but not firewalld. I see there was an effort to package this previously which was then reverted but haven't seen any lively discussion on the topic so thought I'd kick things off. **Metadata** * homepage URL: https://firewalld.org/ * source URL: https://github.com/firewalld/firewalld * license: gpl2 * platforms: linux

adamcstephens · February 18, 2025, 1:25pm

Nice work! Could you add some more to the example in the readme showing more of the use of the rules/zones/etc?

Prince213 · February 18, 2025, 2:31pm

Hi @adamcstephens, I’ve just added an example configuration example.nix.

https://git.sr.ht/~prince213/firewalld-nix/tree/main/item/example.nix

Prince213 · February 23, 2025, 1:34pm

Zones shipped with FirewallD such as drop or block have been converted to Nix.
This means that you can modify the default configurations of zones rather than always overriding them.