Ñò £Tc @s5ddklZddklZlZddƒd„ƒYZededƒd„ged ƒd dgƒeded ƒd…d†gedƒƒededƒd‡gedƒd dgdhdd6dd6ƒededƒdˆd‰dŠgedƒd dgƒeded ƒd‹ged"ƒd d#gƒed$ed%ƒdŒged'ƒƒed(ed)ƒdged+ƒd,d-gƒed.ed/ƒdŽged1ƒƒed2ed3ƒdged5ƒƒed6ed7ƒdged9ƒƒed:ed;ƒd‘d’ged>ƒd,d?gd dgƒed@edAƒd“d”d•d–gedDƒd,d?gƒedEedFƒd—d˜gedHƒƒedIedJƒd™gedLƒƒedMedNƒdšgedPƒƒedQedRƒd›dœgedUƒƒedVedWƒdgedYƒƒedZed[ƒdžged]ƒd,d^gƒed_ed`ƒgedaƒd,d^gƒedbedcƒdŸd d¡d¢gedhƒƒediedjƒd£gedlƒd,dmgƒednedoƒd¤gedqƒƒedredsƒd¥d¦d§gedvƒƒedwedxƒd¨gedzƒƒed{ed|ƒd©ged~ƒƒgZd„Zd€„Z d„Z d‚S(ªiÿÿÿÿ(t_(t getPortIDtgetServiceNamet_ServicecBseZdghdd„ZRS(cCsC||_||_||_||_||_||_||_dS(N(tkeytnametportstdescriptiontmodulestdestinationtdefault(tselfRRRRRR R ((s0/usr/share/system-config-firewall/fw_services.pyt__init__s N(t__name__t __module__tNoneR(((s0/usr/share/system-config-firewall/fw_services.pyRss ipp-clientsNetwork Printing Client (IPP)t631tudpsThe Internet Printing Protocol (IPP) is used for distributed printing. IPP (over udp) provides the ability to get information about a printer (e.g. capability and status) and to control printer jobs. If you plan to use a remote network printer via cups, do not disable this option.R tdesktoptippsNetwork Printing Server (IPP)ttcpsÚThe Internet Printing Protocol (IPP) is used for distributed printing. IPP (over tcp) provides the ability to share printers over the network. Enable this option if you plan to share printers via cups over the network.tmdnssMulticast DNS (mDNS)t5353sÏmDNS provides the ability to use DNS programming interfaces, packet formats and operating semantics in a small network without a conventional DNS server. If you plan to use Avahi, do not disable this option.R s224.0.0.251tipv4sff02::fbtipv6tipsectIPsectahtespiôs/Internet Protocol Security (IPsec) incorporates security for network transmissions directly into the Internet Protocol (IP). IPsec provides methods for both encrypting data and authentication for the host or network it sends to. If you plan to use a vpnc server or FreeS/WAN, do not disable this option.tsshtSSHt22s=Secure Shell (SSH) is a protocol for logging into and executing commands on remote machines. It provides secure encrypted communications. If you plan on accessing your machine remotely via SSH over a firewalled interface, enable this option. You need the openssh-server package installed for this option to be useful.tserverthttps WWW (HTTP)t80sÈHTTP is the protocol used to serve Web pages. If you plan to make your Web server publicly available, enable this option. This option is not required for viewing pages locally or developing Web pages.tftptFTPt21sÀFTP is a protocol used for remote file transfer. If you plan to make your FTP server publicly available, enable this option. You need the vsftpd package installed for this option to be useful.Rtnf_conntrack_ftptnfstNFS4t2049s¯The NFS4 protocol is used to share files via TCP networking. You will need to have the NFS tools installed and properly configure your NFS server for this option to be useful.thttpssSecure WWW (HTTPS)t443sHTTPS is a modified HTTP used to serve Web pages when security is important. Examples are sites that require logins like stores or web mail. This option is not required for viewing pages locally or developing Web pages. You need the httpd package installed for this option to be useful.tsmtpsMail (SMTP)t25sŒThis option allows incoming SMTP mail delivery. If you need to allow remote hosts to connect directly to your machine to deliver mail, enable this option. You do not need to enable this if you collect your mail from your ISP's server by POP3 or IMAP, or if you use a tool such as fetchmail. Note that an improperly configured SMTP server can allow remote machines to use your server to send spam.ssamba-clientsSamba Clientt137t138s•This option allows you to access Windows file and printer sharing networks. You need the samba-client package installed for this option to be useful.tnf_conntrack_netbios_nstsambatSambat139t445s¡This option allows you to access and participate in Windows file and printer sharing networks. You need the samba package installed for this option to be useful.tdnstDNSt53s¥The Domain Name System (DNS) is used to provide and request host and domain names. Enable this option, if you plan to provide a domain name service (e.g. with bind).timapss IMAP over SSLt993s×The Internet Message Access Protocol over SSL (IMAPs) allows a local client to access email on a remote server in a secure way. If you plan to provide a IMAP over SSL service (e.g. with dovecot), enable this option.tpop3ssPOP-3 over SSLt995sÇThe Post Office Protocol version 3 (POP3) is a protocol to retrieve email from a remote server over a TCP/IP connection. Enable this option, if you plan to provide a POP3 service (e.g. with dovecot).tradiustRADIUSt1812t1813sThe Remote Authentication Dial In User Service (RADIUS) is a protocol for user authentication over networks. It is mostly used for modem, DSL or wireless user authentication. If you plan to provide a RADIUS service (e.g. with freeradius), enable this option.topenvpntOpenVPNt1194s·OpenVPN is a virtual private network (VPN) solution. It is used to create encrypted point-to-point tunnels between computers. If you plan to provide a VPN service, enable this option.ttftptTFTPt69sýThe Trivial File Transfer Protocol (TFTP) is a protocol used to transfer files to and from a remote machine in s simple way. It is normally used only for booting diskless workstations and also to transfer data in the Preboot eXecution Environment (PXE).tnf_conntrack_tftpstftp-clientsTFTP Clients‘This option allows you to access Trivial File Transfer Protocol (TFTP) servers. You need the tftp package installed for this option to be useful.s cluster-suitesRed Hat Cluster Suiteiiig+iHRs°This option allows you to use the Red Hat Cluster Suite. Ports are opened for openais, ricci and dlm. You need the Red Hat Cluster Suite installed for this option to be useful.s amanda-clientsAmanda Backup Clienti`'s©The Amanda backup client option allows you to connect to a Amanda backup and archiving server. You need the amanda-client package installed for this option to be useful.tnf_conntrack_amandas bacula-clients Bacula ClientiŽ#s¢This option allows a Bacula server to connect to the local machine to schedule backups. You need the bacula-client package installed for this option to be useful.tbaculatBaculai#i#syBacula is a network backup solution. Enable this option, if you plan to provide Bacula backup, file and storage services.tlibvirtsVirtual Machine Managementi}@sÙEnable this option if you want to allow remote virtual machine management with SASL authentication and encryption (digest-md5 passwords or GSSAPI/Kerberos). The libvirtd service is needed for this option to be useful.slibvirt-tlss Virtual Machine Management (TLS)i‚@sÏEnable this option if you want to allow remote virtual machine management with TLS encryption, x509 certificates and optional SASL authentication. The libvirtd service is needed for this option to be useful.cCs*x#tD]}|i|jo|SqWdS(N(tservice_listRR(Rtx((s0/usr/share/system-config-firewall/fw_services.pytgetByKeyÒs cCs*x#tD]}|i|jo|SqWdS(N(RKRR(RRL((s0/usr/share/system-config-firewall/fw_services.pyt getByNameØs cCs}xvtD]n}t|ƒ}t||ƒ}||f|ijp2t|ƒ|f|ijp||f|ijo|SqWdS(N(RKRRRtstrR(tporttprotoRLtidR((s0/usr/share/system-config-firewall/fw_services.pyt getByPortÞs2 N((RR(RR(RR(RR(NR(NR(iôR(RR(R"R(R%R(R)R(R+R(R-R(R.R(R/R(R.R(R/R(R3R(R4R(R7R(R7R(R9R(R;R(R>R(R?R(RBR(RER(iR(iR(ig+R(iHRR(i`'R(iŽ#R(i#R(iŽ#R(i#R(i}@R(i‚@R(t fw_configRtfw_functionsRRRRRKRMRNRS(((s0/usr/share/system-config-firewall/fw_services.pytsš