Tuesday, March 8, 2022

FirewallD: Allow Port or Services

To start / stop firewalld
#systemctl start firewalld OR service firewalld start
#systemctl stop firewalld OR service firewalld stop

1. To allow specific port. Example to allow TCP port 10000, 8080 and 8443

#firewall-cmd --permanent --add-port=10000/tcp
#firewall-cmd --permanent --add-port=8080/tcp
#firewall-cmd --permanent --add-port=8443/tcp
#firewall-cmd --reload

2. To check the port that opened

#firewall-cmd --list-ports

3. To allow spesific service

#firewall-cmd --permanent --add-service=http

4. To check the service that opened

#firewall-cmd --list-services

5. To allow services / port with spesific IP

#firewall-cmd --new-zone=ftp --permanent
#firewall-cmd --reload
#firewall-cmd --get-zones
#firewall-cmd --zone=ftp --add-source=10.X.X.XX --permanent
#firewall-cmd --zone=ftp --add-port=21/tcp --permanent
#firewall-cmd --reload

To remove rules

# firewall-cmd --zone=ftp --remove-source=10.X.X.XX --permanent
# firewall-cmd --reload
# firewall-cmd --zone=ftp --remove-port=21/tcp --permanent
# firewall-cmd --reload
# firewall-cmd --permanent --delete-zone=ftp
# firewall-cmd --reload

6. Firewalld rich rules

# firewall-cmd --permanent –zone=ftp --add-rich-rule='rule family="ipv4" source address="10.24.96.5/20" port protocol="tcp" port="21" accept'

nothingOS

a personal reference in an open source, linux, microsoft, servers and networking. Compilation of solution once problem solve.

Tuesday, March 8, 2022

FirewallD: Allow Port or Services

0 comments:

Post a Comment

Popular Posts

Blog Archive

Pageviews