[[linux_wiki:configure_firewall_settings_using_firewall-config_firewall-cmd_or_iptables]]

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
linux_wiki:configure_firewall_settings_using_firewall-config_firewall-cmd_or_iptables [2016/03/05 22:03]
billdozor [Configure Firewall Settings Using Firewall-config Firewall-cmd Or Iptables]
linux_wiki:configure_firewall_settings_using_firewall-config_firewall-cmd_or_iptables [2019/05/26 03:50] (current)
Line 7: Line 7:
 ---- ----
  
-====== Firewall Stack ======+===== Firewall Stack =====
  
   * firewall-config => GUI Frontend for firewalld   * firewall-config => GUI Frontend for firewalld
Line 18: Line 18:
 ---- ----
  
-==== Firewalld (firewall-cmd,​ firewall-config) ====+===== Firewalld (firewall-cmd,​ firewall-config) ​=====
  
 Install and start firewall packages (included by default on base, not minimum install) Install and start firewall packages (included by default on base, not minimum install)
Line 27: Line 27:
 </​code>​ </​code>​
  
 +\\
 View zone names View zone names
 <code bash> <code bash>
Line 32: Line 33:
 </​code>​ </​code>​
  
 +\\
 View default zone View default zone
 <code bash> <code bash>
Line 38: Line 40:
   * Zone "​public"​ applies to all interfaces (the catch all)   * Zone "​public"​ applies to all interfaces (the catch all)
  
 +\\
 View current rules (default zone) View current rules (default zone)
 <code bash> <code bash>
Line 43: Line 46:
 </​code>​ </​code>​
  
 +\\
 View rules, specify zone View rules, specify zone
 <code bash> <code bash>
Line 48: Line 52:
 </​code>​ </​code>​
  
 +\\
 View all zones rules View all zones rules
 <code bash> <code bash>
Line 53: Line 58:
 </​code>​ </​code>​
  
 +\\
 Add source IP network for home zone (Runtime change) Add source IP network for home zone (Runtime change)
 <code bash> <code bash>
Line 59: Line 65:
   * Runtime/​Non-persistent changes are instant, but don't survive a reload/​reboot   * Runtime/​Non-persistent changes are instant, but don't survive a reload/​reboot
  
 +\\
 Permanent change (survives firewall reload or system reboot) Permanent change (survives firewall reload or system reboot)
 <code bash> <code bash>
Line 66: Line 73:
   * Permanent changes do not take effect until a firewall-cmd --reload   * Permanent changes do not take effect until a firewall-cmd --reload
  
 +\\
 Allow HTTP on default zone (instant change and also permanent) Allow HTTP on default zone (instant change and also permanent)
 <code bash> <code bash>
Line 72: Line 80:
 </​code>​ </​code>​
  
 +\\
 Launch GUI, firewall-config Launch GUI, firewall-config
 <code bash> <code bash>
Line 79: Line 88:
 ---- ----
  
-==== iptables ====+===== iptables ​=====
  
 You can use iptables, but it is recommended to use firewall-cmd instead. Using iptables instead requires disabling firewalld, installing iptables-services,​ and then enabling the iptables service. You can use iptables, but it is recommended to use firewall-cmd instead. Using iptables instead requires disabling firewalld, installing iptables-services,​ and then enabling the iptables service.
  • linux_wiki/configure_firewall_settings_using_firewall-config_firewall-cmd_or_iptables.txt
  • Last modified: 2019/05/26 03:50
  • (external edit)