Bitácora

firewall-cmd

 101  1 min

  • Check the service is running:

    firewall-cmd --state

    running

  • Get default zone:

    firewall-cmd --get-default-zone

    public

  • Get active zones:

    firewall-cmd --get-active-zones

    public
interfaces: eth0 eth1

  • List the default zone configuration:

    firewall-cmd --list-all

    public (active)
target: default
icmp-block-inversion: no
interfaces: eth0 eth1
sources:
services: dhcpv6-client ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:

  • List configuration for all zones:

    firewall-cmd --list-all-zone

    block
target: %%REJECT%%
icmp-block-inversion: no
interfaces:
sources:
services:
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:


dmz
target: default
icmp-block-inversion: no
interfaces:
sources:
services: ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
...

References

1 firewall-cmd man page (firewalld.org):

updatedupdated2020-11-022020-11-02