Search found 21 matches

by ddolecki108
2017/06/21 22:24:04
Forum: CentOS 7 - General Support
Topic: Graceful poweroff
Replies: 1
Views: 158

Graceful poweroff

Whats the command to MOST gracefully poweroff a CentOS7 system?
by ddolecki108
2017/06/20 13:26:56
Forum: CentOS 7 - Software Support
Topic: CIFS mount issue
Replies: 1
Views: 59

CIFS mount issue

ON a FIPS hardeded system the RHEL support method to mount a CIFS share is to use sec=krb5, tried that, still getting errors: [root@servername]# tail /var/log/messages Jun 20 08:11:40 servername kernel: CIFS VFS: Send error in SessSetup = -126 Jun 20 08:11:40 servername kernel: CIFS VFS: cifs_mount ...
by ddolecki108
2017/05/05 14:03:58
Forum: CentOS 7 - Networking Support
Topic: Drop packets in the default zone
Replies: 1
Views: 146

Re: Drop packets in the default zone

It seems it does in fact drop all packets, I added a rule to allow ssh incoming and then I could ssh into it.
by ddolecki108
2017/05/01 18:54:50
Forum: CentOS 7 - Networking Support
Topic: Drop packets in the default zone
Replies: 1
Views: 146

Drop packets in the default zone

This is what security advises:

"To set the default zone to drop for the built-in default zone which processes incoming IPv4 and IPv6 packets, modify the following line in /etc/firewalld/firewalld.conf to be: DefaultZone=drop"

So, won't this drop all incoming packets?
by ddolecki108
2017/04/23 23:19:52
Forum: CentOS 5 - Networking Support
Topic: What does this iptables -L output mean?
Replies: 2
Views: 841

Re: What does this iptables -L output mean?

How to convert iptables rules to firewalld rules?
example: ACCEPT tcp -- anywhere anywhere tcp dpt:8309 state NEW,ESTABLISHED
how to convert the above to a firewalld rule?
by ddolecki108
2017/04/21 21:00:28
Forum: CentOS 5 - Networking Support
Topic: What does this iptables -L output mean?
Replies: 2
Views: 841

What does this iptables -L output mean?

What do these iptables -L output rules mean: ACCEPT tcp -- anywhere anywhere tcp dpt:8009 state NEW,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:8109 state NEW,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:8011 state NEW,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:webcache state...
by ddolecki108
2017/04/21 19:46:35
Forum: CentOS 5 - Networking Support
Topic: How to list all firewall rules
Replies: 1
Views: 787

How to list all firewall rules

We have some legacy CentOS5.x systems that we are migrating to 7, how do I list all the firewall rules that are in place so that I can apply them once we move them to CentOS7?
by ddolecki108
2017/04/19 18:26:19
Forum: CentOS 7 - Security Support
Topic: How to send firewall events(reject/drop) to rsyslog
Replies: 4
Views: 437

Re: How to send firewall events(reject/drop) to rsyslog

But this may well write the logs to /var/log/messages, any ideas on sending them to rsyslog?
by ddolecki108
2017/04/19 18:22:24
Forum: CentOS 7 - Security Support
Topic: How to send firewall events(reject/drop) to rsyslog
Replies: 4
Views: 437

Re: How to send firewall events(reject/drop) to rsyslog

This is the solution: Upgrade to firewalld-0.4.3.2-8.el7 firewall-cmd --set-log-denied=<value> value may be one of: all, unicast, broadcast, multicast, or off set-log-denied=value Add logging rules right before reject and drop rules in the INPUT, FORWARD and OUTPUT chains for the default rules and a...
by ddolecki108
2017/04/19 15:40:16
Forum: CentOS 7 - Security Support
Topic: How to send firewall events(reject/drop) to rsyslog
Replies: 4
Views: 437

How to send firewall events(reject/drop) to rsyslog

without rewriting all the rules to add the log option to them?

Go to advanced search