Firewalld

Support for security such as Firewalls and securing linux
Post Reply
ctnsailor
Posts: 1
Joined: 2014/07/09 12:37:26

Firewalld

Post by ctnsailor » 2014/07/09 12:42:18

Hi There

Where can I find more documentation on Firewalld. My need is to only allow connection to designated ports from allowed hosts.

Basically need to allow only certain source addresses. Do I create a custom zone with the allowed addresses?

Cheers

User avatar
avij
Retired Moderator
Posts: 3039
Joined: 2010/12/01 19:25:52
Location: Helsinki, Finland
Contact:

Re: Firewalld

Post by avij » 2014/07/09 23:13:16


User avatar
Super Jamie
Posts: 310
Joined: 2014/01/10 23:44:51

Re: Firewalld

Post by Super Jamie » 2014/07/10 07:39:29

FirewallD uses the concept of Zones, and allows Services into those Zones.

A Zone contains NetworkManager Connections.

A Service consists of a Port, Destination Address (optional), and Netfilter Helper (optional).

Assuming all your NetworkManager Connections are in the default Zone, you just need to create Services and allow those Services into the default Zone.

The RHEL doc is pretty good, though it does have a few inaccuracies. The Fedora wiki is a little bit incomplete and outdated. Personally I find man firewall-cmd to be the best resource at the moment.

Post Reply

Return to “CentOS 7 - Security Support”