Unix and Linux Stack Exchange
Unix and Linux Stack Exchange

Questions tagged [firewalld]

Firewalld is a Fedora project that "provides a dynamically managed firewall with support for network/firewall zones to define the trust level of network connections or interfaces".

Firewalld is a Fedora project that "provides a dynamically managed firewall with support for network/firewall zones to define the trust level of network connections or interfaces".

https://fedoraproject.org/wiki/FirewallD

286 questions
50
votes
7 answers

How to configure Centos 7 firewallD to allow docker containers free access to the host's network ports?

I have docker installed on CentOS 7 and I am running firewallD. From inside my container, going to the host (default 172.17.42.1) With firewall on container# nc -v 172.17.42.1 4243 nc: connect to 172.17.42.1 port 4243 (tcp) failed: No route to…
adapt-dev
  • 1,329
  • 2
  • 13
  • 18
43
votes
9 answers

Whitelist source IP addresses in CentOS 7

I want to set up CentOS 7 firewall such that, all the incoming requests will be blocked except from the originating IP addresses that I whitelist. And for the Whitelist IP addresses all the ports should be accessible. I'm able to find few solutions…
Krishnandu Sarkar
  • 533
  • 1
  • 4
  • 6
23
votes
3 answers

what is dhcpv6-client service in firewalld, and can i safely remove it?

In a CentOS 7 server, I type in firewall-cmd --list-all, and it gives me the following: public (default, active) interfaces: enp3s0 sources: services: dhcpv6-client https ssh ports: masquerade: no forward-ports: icmp-blocks: …
CodeMed
  • 5,079
  • 45
  • 100
  • 147
22
votes
4 answers

NFS servers and firewalld

I haven't found a slam-dunk document on this, so let's start one. On a CentOS 7.1 host, I have gone through the linuxconfig HOW-TO, including the firewall-cmd entries, and I have an exportable filesystem. [root@ ~]# firewall-cmd…
dafydd
  • 1,458
  • 4
  • 17
  • 32
16
votes
1 answer

Configuring OpenVPN to use Firewalld instead of iptables on Centos 7

I need to configure OpenVPN on Centos 7 using firewalld. I used iptables on Centos 6.5 and only had to add the following lines to /etc/sysconfig/iptables: -A POSTROUTING -s "10.0.0.0/24" -o "wlan0" -j MASQUERADE -A FORWARD -p tcp -s 10.0.0.0/24…
Fxbaez
  • 439
  • 2
  • 6
  • 10
13
votes
2 answers

How to remove preconfigured zones in firewalld

I was unable to remove any preconfigured zones. [root@fabian ~]# firewall-cmd --permanent --delete-zone=block Error: BUILTIN_ZONE: block [root@fabian ~]# Is there a way I can do that? If I just remove coresponding zone files, firewalld won't…
Aas
  • 231
  • 1
  • 2
  • 5
13
votes
4 answers

Can logging be enabled in FirewallD

I'm running Fedora 20 and would like to see what my firewall is doing in the background. Is it possible to view a log of the traffic blocked by FirewallD?
David Armstrong
  • 133
  • 1
  • 1
  • 4
11
votes
2 answers

Show list of open ports using firewalld in CentOS7

Is there an easy way to show a full list of all the ports that have been opened using firewalld? I know the command firewall-cmd --list-all, but that just shows service names, not the ports that those services define as being open. For…
Dave Mulligan
  • 345
  • 2
  • 4
  • 10
11
votes
1 answer

How do I get a list of the ports which belong to preconfigured firewall-cmd services?

I want to open the following ports in my CentOS 7 firewall: UDP 137 (NetBIOS Name Service) UDP 138 (NetBIOS Datagram Service) TCP 139 (NetBIOS Session Service) TCP 445 (SMB) I can guess that the services names include samba includes TCP 445 but I…
Zhro
  • 2,495
  • 4
  • 28
  • 45
9
votes
1 answer

CentOS 8 firewalld + nftables or just nftables

I've been on CentOS 7 for a long time and was used to building my custom iptables configurations on a variety of both personal and business boxes. I've recently started working with CentOS 8 and learned of the move from iptables to nftables and so…
oucil
  • 241
  • 1
  • 2
  • 9
8
votes
2 answers

How to let the Firewall of RHEL7 the SNMP connection passing?

How to let the Firewall of RHEL7 the SNMP connection passing? When I did this command on the computer: systemctl stop firewalld All the SNMP packet are passing well. When I restarted firewalld all the packet arre blocked. I tried several…
dubis
  • 1,430
  • 2
  • 18
  • 31
7
votes
4 answers

firewalld accept response to multicast DNS query from ephemeral port

I'm trying to configure firewalld (Fedora 21) so that responses get through for MDNS queries sent from a client application using an ephemeral UDP source port to a multicast target. The responses are unicast. The sequence goes like this (as captured…
awy
  • 301
  • 2
  • 6
6
votes
1 answer

How to enable multiple services at once with firewalld module - Ansible

How to enable multiple services at once with firewalld module? I'm using this code which enables one service (https) after running ansible-playbook.It work just fine. However, I can't figure out how to enable multiple services in this code instead…
JohnyFailLab
  • 133
  • 3
  • 9
6
votes
1 answer

Can't remove interface from zone with NetworkManager enabled. - Firewalld / Centos8

My issue is when I'm trying to remove interface from public (default) zone I get error: firewall-cmd --zone=public --remove-interface=eth0 --permanent The interface is under control of NetworkManager and already bound to the default zone. The…
JohnyFailLab
  • 133
  • 3
  • 9
6
votes
2 answers

How to use POSTROUTING / SNAT with firewalld?

I try to set up SNAT with firewalld on my CentOS-7-Router like described here, with additions from Karl Rupps explanation, but I end up like Eric. I also read some other documentation, but I am not able to get it to work, so that my client-IP is…
Jochen Gebsattel
  • 163
  • 1
  • 1
  • 8
1
2 3
19 20