Questions tagged [firewalld-zone]
21 questions
0
votes
0 answers
FirewallD block some IPs and allow all the rest
I'm new in firewallcmd managment, so probably I'm asking a simple question. What I have to do is allow all incoming connections except for some IPs.
To block IPs I used the "block" zone:
firewall-cmd --zone=block…
![](../../users/profiles/193706.webp)
Lucas Rey
- 101
- 4
0
votes
0 answers
Firewalld show rich rules without zone
may someone could help me with firewalld.
I need to add rich rules with no associated zone, as the source / destination networks are all remote. For example:
firewall-cmd --add-rich-rule='rule family="ipv4" source address="204.4.3.4" destination…
![](../../users/profiles/889156.webp)
hrtmann
- 1
0
votes
1 answer
How to add a new zone in firewalld without blocking `port=80/tcp` in `zone=public` in Ubuntu 20.04
I'm not too familiar with firewalld, but I thought I'd try it out on Ubuntu20.04. The problem I'm having is that port=80/tcp in zone=public gets blocked every time I try to add a new zone.
So my question is: how do I add a new zone without it…
![](../../users/profiles/14896.webp)
John
- 7,153
- 22
- 61
- 86
0
votes
2 answers
Templating firewalld zones with ansible - issue with xml or vars
Templating firewalld zones with ansible - issue with xml manipulation
I am running into a small bit of confusion for the rule family.
whats in my CORRECTED vars file:
firewalld_zones:
- name: public
short: "Public"
description: "Public…
![](../../users/profiles/615416.webp)
Wipiid
- 1
- 2
0
votes
0 answers
firewalld allow ssh only from one predefined IP host or AS number net
I am using CentOS Linux release 7.9.2009 in minimal installation and firewalld .
[root@centosmin firewalld]# uname -a
Linux centosmin 3.10.0-1160.6.1.el7.x86_64 #1 SMP Tue Nov 17 13:59:11 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
There are similar…
![](../../users/profiles/603286.webp)
Tito
- 143
- 7
0
votes
0 answers
How to get an IP address blocked with firewall-cmd with immediate effect?
I am having a problem, with dropping traffic using FirewallD.
I start a continuous ping from host1.example.com (192.0.2.101) to host2.example.com (192.0.2.102), and when I execute either of the below commands on host2:
firewall-cmd -q --permanent…
![](../../users/profiles/584192.webp)
Sasha
- 1
- 2