Cheat Sheet: firewalld on CentOS 7

Submitted by admin on Thu, 03/09/2017 - 09:24

Firewalld

  • systemctl enable firewalld
  • systemctl status firewalld

Zones

  • firewall-cmd --get-zones
    • work drop internal external trusted home dmz public block
  • firewall-cmd --get-default-zone
    • trusted
  • firewall-cmd --set-default-zone=block

Services

  • firewall-cmd --list-services
  • firewall-cmd --permanent --add-service=ftp
  • firewall-cmd --permanent --remove-service=ftp

Ports

  • firewall-cmd --zone=trusted --list-ports
  • firewall-cmd --permanent --zone=trusted --add-port=80/tcp
  • firewall-cmd --permanent --zone=trusted --remove-port=80/tcp

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer