All Questions
14 questions
1
vote
1
answer
365
views
Firewalld port redirect to rootless podman container
I'm having a podman container running rootless on port 8080 and 8443. But I want to have access to them on port 80 and 443.
This is working quite well with firewalld and this command:
firewall-cmd \
...
- 11
0
votes
0
answers
275
views
Peers can connect to VPN server but not between themselves (Packet filtered)
I'm new into VPN topic and routing in general, and wanted to learn new thinks while setting up wireguard. However I'm facing an issue that I can't resolve for some time.
As in title: Peers can connect ...
- 1
1
vote
0
answers
746
views
Firewalld open all ports except one
With firewalld, I am trying to allow all ports except one for everyone, as that port must be enabled for a specific host, and I have tried the following:
firewall-cmd --permanent --zone=public --add-...
- 11
1
vote
0
answers
48
views
Is it possible to use iptables ipset together with firewalld?
Currently, I am using firewalld and now I need to use iptables ipset so I was wondering if I can use iptables ipset alongside firewalld and if I can how I should be doing that
- 663
0
votes
0
answers
521
views
Firewalld, opening all subnet for zone
Another question about firewalld, I need someone to explain this to me in simple words, because I read countless posts and I don't know what's happening here.
I've enable the home zone in ...
- 256
0
votes
1
answer
2k
views
CentOS 8.1: Forwarding OpenVPN Clients to LAN without NAT
So there's an OpenVPN Server with multiple clients, which I successfully divided into multiple subnets.
10.0.30.0/26 for generic clients which are only allowed to communicate with the OpenVPN Server ...
- 13
0
votes
1
answer
554
views
CentOS 7 - Load settings for iptables at OS startup
I would like to load the settings below for iptables on CentOS 7 at OS startup using a bash script.
How can I do this?
#!/bin/bash
iptables -I OUTPUT -d 0.0.0.0/0 -j ACCEPT
iptables -I FORWARD -d 0....
- 1,284
7
votes
2
answers
13k
views
firewall-cmd - add-forward-port don't work
I have a KVM server (host) with multiple virtual machines (guests).
My goal is my host forward port 222 to port 22 of a guest running an ssh service.
This works...
iptables -I OUTPUT -d 0.0.0.0/0 -...
- 1,284
9
votes
1
answer
19k
views
How can I configure firewalld to block all outgoing traffic except for specific ports while allowing localhost to access any of its own local ports?
I started out with this:
# First, allow outbound traffic for all allowed inbound traffic
firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT
# Allow ...
- 341
1
vote
1
answer
2k
views
firewall-cmd blocking snmp
I inherited a system that has rules implemented with firewall-cmd, it has the below rules. Another system is trying to connect to snmp port (UDP/161) but is not able (my server is responding with ICMP ...
- 125
0
votes
1
answer
166
views
How to create a firewall rule, to block a website for a particular user? [closed]
can anybody helps me to make a firewall rule to block a particular website for a particular user. i have a Linux operating system am trying to make that OS like a firewall.
- 11
11
votes
1
answer
11k
views
Opening a port with firewalld doesn't seem to work
I have configured sshd to live on a different port. I have opened that port using firewalld:
$ sudo firewall-cmd --zone=public --add-port=22000/tcp --permanent
Listing rules shows port 22000 is ...
- 502
3
votes
1
answer
10k
views
using firewalld and firewall-cmd how to add-rule to primary INPUT chain not INPUT_direct
so after reading the firewalld man page and fedora documentation, I have come to the understanding that to add a custom rule to firewall with specific arguements i need to use the structure
firewall-...
- 141
7
votes
1
answer
4k
views
How to block docker-mapped ports with a firewall from outside the host without messing up docker routing inside the host?
I have a docker container running on a host with some port mapped to a port on the host.
docker run -d -p 9009:9009 someserver
I want this machine firewalled off from the internet except for 80, ...
- 261