This is a minor, but annoying defect on the RH7.1 GA release. During install, I reached the questions about firewall setup and told it to allow access to services telnet and ftp. When I booted up after the install, I couldn't get to them. I looked at the config files under /etc/xinit.d and the config files had a comment that said they were enabled by default, but they were actually disabled. Workaround is to 'chkconfig telnet on' to turn telnet on, etc. I know that the firewall/ipchains setup is independant of xinitd, but wouldn't it stand to reason that if you want to allow access to those ports, then you want the service started? Even still, the default behaviour is not consistant with the comments in the config files.
What security level did you pick?
Choices were High, Medium, and No Firewall. The default was Medium and that's what I picked.
Yes, you are right. The config file comments need to be changed. The default behavior is supposed to be off. Trond, can you fix the config files? This is not an anaconda problem.
This is the way the service config files are supposed to be by default. If you want to change them on the basis of firewall configuration, do it in anaconda - the default is not changing.
The firewall screen is intended to configure the firewall, not the services which are running on the system. The ntsysv command can be used to enable and disable services once the system is installed.