This shows you the differences between two versions of the page.
firewalld [2018/09/28 16:52] k2patel [Replace firewalld with iptables] |
firewalld [2020/08/10 02:35] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Firewalld ====== | ||
- | Another package to manage another package... welcome to new world ... :D\\ | ||
- | Anyway but server need to keep rolling !! | ||
- | |||
- | |||
- | ==== Replace firewalld with iptables ==== | ||
- | This is tested with the RHEL7 | ||
- | <code bash> | ||
- | yum install -y iptables-services | ||
- | iptables-save > /etc/sysconfig/iptables # preserve existing rule | ||
- | systemctl stop firewalld | ||
- | systemctl mask firewalld | ||
- | systemctl enable iptables | ||
- | systemctl enable ip6tables | ||
- | systemctl start iptables | ||
- | systemctl start ip6tables | ||
- | </code> | ||
- | |||
- | ==== Adding rich rule ==== | ||
- | |||
- | <code bash> | ||
- | firewall-cmd --permanent --zone=public --add-rich-rule=' | ||
- | rule family="ipv4" | ||
- | source address="192.168.12.0/25" | ||
- | port protocol="tcp" port="9200" accept' | ||
- | </code> |