firewalld

This is an old revision of the document!

Table of Contents

Firewalld
- - Replace firewalld with iptables
  - Adding rich rule

Firewalld

Another package to manage another package… welcome to new world … :D
Anyway but server need to keep rolling !!

Replace firewalld with iptables

This is tested with the RHEL7

yum install -y iptables-services
iptables-save > /etc/sysconfig/iptables .  # preserve existing rule
systemctl stop firewalld
systemctl mask firewalld
systemctl enable iptables
systemctl enable ip6tables
systemctl start iptables
systemctl start ip6tables

Adding rich rule

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  source address="192.168.12.0/25"
  port protocol="tcp" port="9200" accept'

firewalld.1538153555.txt.gz · Last modified: 2020/08/10 02:30 (external edit)