Fedora 23 and fwbuilder

Fedora & Fwbuilder

For both work and private entertainment I have been using fwbuilder, a graphical clicky-clicky firewall configuration tool that totally rocks when you have a shitload of servers to manage. Added a new trusted ip? net? *click*, done. And by deploying the rules with puppet it’s a breeze and almost fun.

As only of recently I began using Fedora (both vanilla and kde spin) as my workstation OS, and so far I like it. Before that I have been using Ubuntu 12.04 LTS since it came out. But it was aged and the upgrade kind of failed (ati, *cough*).

So back on my new and shiny Fedora Station I typed the magic words:

~ $ sudo dnf install fwbuilder
Last metadata expiration check: 2:05:43 ago on Tue May 3 13:21:44 2016.
No package fwbuilder available.
Error: Unable to find a match.

Yikes! Fwbuilder is not in the main repo. I googled and it turns out fwbuilder was removed back in Fedora 21, running 23 any hope of using a 21’ish rpm is gone. Tarball of binaries? No. Nothing.

rpmfind et all does not yield any sort of result. So we need to get our handy dirty.

Remedy

First, download the sources from the site or directly from sourceforge and unpack. While on the subject, dependencies:

dnf groupinstall "Development Tools" "Development Libraries"
dnf install automake autoconf libtool libxml2-devel libxslt-devel net-snmp-devel qt qt-devel qt-x11 libxslt-devel

big list of software, but it’s needed for fwbuilder. I set up a virtual machine just for the build which I can dispose off later on.

Building will fail if we do not inlcude another header file that’s not included by default. Edit the file “src/libfwbuilder/src/fwbuilder/ThreadTools.h“, line ~34’ish, and add “#include <unistd.h>” so it looks like this:

#ifndef __THREAD_TOOLS_H_FLAG__
#define __THREAD_TOOLS_H_FLAG__

#include "fwbuilder/libfwbuilder-config.h"

#include <time.h> //for time_t definition
#include <pthread.h>
#include <unistd.h>

#include <string>
#include <queue>

This will allow the compile to run through without any failures. Now for the compile itself (as root for the install):

PATH=${PATH}::/usr/lib64/qt4/bin
./autogen.sh
./runqmake.sh
./configure --prefix=/opt/fwbuilder
make -j 8 && make install
strip -sx /opt/fwbuilder/bin/*

Depending on your cpu speed this might take a while but will net you with your very own fwbuilder, located under /opt/fwbuilder. If you don’t like that you can oimit the entire ‘configure’ and ‘strip’ lines above. It will install fwbuilder in /usr/local and will be in your path.

Give your new fwbuilder a spin:

~ $ /opt/fwbuilder/bin/fwbuilder 
Firewall Builder GUI 5.1.0.3599

Fast Food

If all that compiling is not your cup of tea, here is a tarball of my compilation, fwbuilder 5.1.0.3599 for Fedora 23, x64:

And here is a tarball for CentOS 7:

If you are only downloading the compiled tarball above without installing any of the prerequisites for the build (and there would be no need to) you still need to install the net-snmp libs, as such:

~ $ sudo dnf install net-snmp-libs

I hope this helps some folks out there, as usual: If you have any issues, click ‘support’ above.
-Christian.

Christian

Touched base with Linux back in 1995, got hooked up on it ever since. I am using Linux for both private and office for two decades. Working as a System Administrator at a medium sized hosting company I get in touch with all kinds of trouble. All of which can be solved with Linux. In my blog I am sharing solutions to problems that I had to search for myself in hope that someone else out there might find them useful.

One thought on “Fedora 23 and fwbuilder

Leave a Reply

Your email address will not be published. Required fields are marked *