All Questions
48
questions
2
votes
1
answer
873
views
How to configure Firewalld to block incoming traffic on loopback interface?
I have firewalld enabled and configured as below:
loopback (active)
target: DROP
icmp-block-inversion: no
interfaces: lo
sources:
services:
ports:
protocols:
forward: no
...
0
votes
1
answer
3k
views
Convert iptable rules to firewalld
Need your help to convert this to a firewalld command. I'm not sure that i will do it in proper way, so yeah :)
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A ...
0
votes
1
answer
888
views
Firewall is active, added port to iptables but still cannot connect
We have RedHat 8 server. Firewalld is active.
I need to connect to port 5050 from my lap top and from the second server, so I added it to the rules
iptables -I INPUT -p tcp -m tcp --dport 5050 -j ...
1
vote
1
answer
606
views
firewalld: Significance of the number after INPUT/OUTPUT
firewall-cmd --permanent --direct --add-rule ipv4 filter OUTPUT 0 -p tcp -m tcp --dport=80 -j ACCEPT
What does the 0 after OUTPUT mean or what is the significance of any number after INPUT/OUTPUT? I ...
0
votes
1
answer
4k
views
Linux Routing on Dual Network Interfaces
I am trying to set up a system where a single server has 2 VLANs and 2 corresponding network interfaces. I want to be able to bind services to a specific interface so it only receives traffic that ...
0
votes
1
answer
1k
views
Why does firewalld enabled after a reboot and after a restart have a different behavior?
I'm on Centos 8 Stream, a rolling release version using 4.18.0-301.1.el8.x86_64 and I find weird and non consistent behavior.
Depending on how firewalld is started, it has a different behavior.
When ...
0
votes
0
answers
556
views
Enable FTP/port21 on server?
UPDATE: When I remove the ftp_username from vsftpd.conf, I get this error:
500 OOPS: vsftpd: cannot locate user specified in 'ftp_username':ftp
I have a RHEL (Red Hat Enterprise Linux) 7 server that ...
0
votes
1
answer
318
views
How to block IP Address using Firewalld after $N Times
I want to know how I could block IP Address using firewalld based on number of times ?
For example: I've a running ssh and i want to set a rule if an ip address tried to connect to my ssh server and ...
0
votes
1
answer
449
views
what's the relationship between iptables and firwalld
I am using RHEL 7. I want to know what's relationship between firewalld and iptables.
If I want to do some port forwarding, should I use firewall-cmd or iptables ?
when applying rules using iptables, ...
2
votes
1
answer
5k
views
What is the significance of mark match in IPTABLES?
I am trying to set up a Rancher site and struggling to get networking right. My health check containers are failing with "No route to host". I compared the IPTABLE rules with a working ...
0
votes
1
answer
41
views
iptable nat rules working on ubuntu16.04 but not on redhat7.6
I need to use iptable nat rules on a rhel7 vm to route packets to a certain ip address.
For development I tested the rules on ubuntu 16.04 vm with ip-address 192.168.150.4:
sysctl net.ipv4....
0
votes
0
answers
154
views
iptables rules work inbound, but not outbound
I have 5 Windows workstations (on various versions) connected to an unmanaged switch, which then connects to a NAS running Samba, which then pushes the data out to our storage cluster. That's been ...
-1
votes
1
answer
696
views
Disable firewall service
How do I disable the firewall in RHEL 6.8?
I tried
service iptables stop
chkconfig iptables off
service ip6tables stop
chkconfig iptables off
I can see that the service is off and disabled by ...
1
vote
1
answer
224
views
NAT/Masquerade. Was working before, now is not
So for at least two months I had an IP tables configuration that was working on a compute cluster to provide internet access to compute nodes that were technically offline, via the headnode. We ...
0
votes
1
answer
479
views
linux redhat 7 ( or centos 7 ) + firewalld mask the firewall
I want to block the user to start the firewall on Linux machines
so I want to use mask on servers as the following:
systemctl mask firewalld
regarding that, I have few questions.
I see that when ...