classnotes:rh134:firewall
Manage Network Security
you interface with the firewall using the firewall-cmd it makes changes to the file /etc/firewalld/zones/public.xml
here are some options
| command option | what it does |
|---|---|
| --get-default-zone | List the default zone |
| --list-all | list all settings of the zone specified, if none is specified (needs the --zone ) it gives settings option for default |
| --add-service | enables the ports used by the service through the firewall (need --permanent) example --add-service nfs --permanent |
| --info-service | get details of what the service for example --info-service https |
| --reload | reloads firewall |
| --runtime-to-permanent | converts runtime configuration to a permanent config |
| --remove-service | removes ports enabled by the service mentioned example --remove-service http |
| --add-port port/(tcp or udp) | to specify a port example --add-port 1234/tcp |
| --get-services | list all predefined services |
classnotes/rh134/firewall.txt · Last modified: by 127.0.0.1