Red Hat Bugzilla – Bug 979624
[RFE] Allow fail2ban to use firewall-cmd in actions scripts
Last modified: 2013-07-06 21:33:31 EDT
Created attachment 766751 [details]
SELinux module policy file fail2ban-firewall-cmd.te
Description of problem:
SELinux does not allow fail2ban to use "firewall-cmd" in an fail2ban action script.
I provide in the attachment a SELinux module policy that allows that.
It would be nice if this would be added to the targeted policy.
Version-Release number of selected component (if applicable):
For an example and use case of "firewall-cmd" in fail2ban see bug #979622 .
commit f1b66fd1c531db657efef84a6f1527d11615e956 adds these rules to git.
selinux-policy-3.12.1-59.fc19 has been submitted as an update for Fedora 19.
* should fix your issue,
* was pushed to the Fedora 19 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing selinux-policy-3.12.1-59.fc19'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
selinux-policy-3.12.1-59.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.