Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [firewalld-zone]

21 questions
0
votes
0 answers

FirewallD block some IPs and allow all the rest

I'm new in firewallcmd managment, so probably I'm asking a simple question. What I have to do is allow all incoming connections except for some IPs. To block IPs I used the "block" zone: firewall-cmd --zone=block…
Lucas Rey
  • 101
  • 4
0
votes
0 answers

Firewalld show rich rules without zone

may someone could help me with firewalld. I need to add rich rules with no associated zone, as the source / destination networks are all remote. For example: firewall-cmd --add-rich-rule='rule family="ipv4" source address="204.4.3.4" destination…
hrtmann
  • 1
0
votes
1 answer

How to add a new zone in firewalld without blocking `port=80/tcp` in `zone=public` in Ubuntu 20.04

I'm not too familiar with firewalld, but I thought I'd try it out on Ubuntu20.04. The problem I'm having is that port=80/tcp in zone=public gets blocked every time I try to add a new zone. So my question is: how do I add a new zone without it…
John
  • 7,153
  • 22
  • 61
  • 86
0
votes
2 answers

Templating firewalld zones with ansible - issue with xml or vars

Templating firewalld zones with ansible - issue with xml manipulation I am running into a small bit of confusion for the rule family. whats in my CORRECTED vars file: firewalld_zones: - name: public short: "Public" description: "Public…
Wipiid
  • 1
  • 2
0
votes
0 answers

firewalld allow ssh only from one predefined IP host or AS number net

I am using CentOS Linux release 7.9.2009 in minimal installation and firewalld . [root@centosmin firewalld]# uname -a Linux centosmin 3.10.0-1160.6.1.el7.x86_64 #1 SMP Tue Nov 17 13:59:11 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux There are similar…
Tito
  • 143
  • 7
0
votes
0 answers

How to get an IP address blocked with firewall-cmd with immediate effect?

I am having a problem, with dropping traffic using FirewallD. I start a continuous ping from host1.example.com (192.0.2.101) to host2.example.com (192.0.2.102), and when I execute either of the below commands on host2: firewall-cmd -q --permanent…
Sasha
  • 1
  • 2
1
2