Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Firewalldhttps://www.youtube.com/watch?v=T2g6nxRCnLQ&ab_channel=NetSecProf

firewall-cmd --list-all  (default zone= public )


Services
list all services availablefirewall-cmd --get-services
add service to a zone

firewall-cmd --add-service

-

=https    ( will add to the default zone= public or "untrusted" or what ever default zone)

firewall-cmd --reload

allow ICMP
firewall-cmd --permanent --add-icmp-block-inversion  ( by default block, inversion=allow ;-)
firewall-cmd --permanent --add-icmp-block=echo-reply
firewall-cmd --permanent --add-icmp-block=echo-request
firewall-cmd --reload
add permanent servicefirewall-cmd --add-service-https  --permanent
create service


Ports
add portfirewall-cmd --get-ports
add permanent port


Zones
list zonesfirewall-cmd --get-zones
zones config infofirewall-cmd --zone=home --list-all
add zones
create zone


NAT or masquarade




...