Firewalld

Edit firewalld service on redhat linux

Check service:

1
2
3
sudo firewall-cmd --state # check service state

systemctl status firewalld # check service is running

Check Firewall rules:

1
2
3
4
5
6
7
sudo firewall-cmd --get-active-zones # list active zones

sudo firewall-cmd --list-all # list firewall rules

sudo firewall-cmd --list-ports # list only open ports

sudo firewall-cmd --list-services # list allowed services

Add port to allow on firewall:

1
2
3
4
sudo firewall-cmd --add-port=/tcp # add port

sudo firewall-cmd --add-port=/tcp --permanent # add port permenatly
sudo firewall-cmd --reload # reload service to apply change

Add firewall rules as services:

Check service files:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
cat /etc/firewalld/services/.xml # check service file

nano /etc/firewalld/services/.xml # create new service file

#example xml defining the service

  Service Name
  Description of the service
  "/>

firewall-cmd --reload # reload so firewalld can see the service

firewall-cmd --zone=public --add-service= --permanent # apply the service to the "public zone"

firewall-cmd --reload # reload to apply the change

firewall-cmd --zone=public --list-services # check active services to confirm change

CoreDNS Azure Web Application Firewall