Skip to main content
Unix & Linux

Questions tagged [firewalld]

Ask Question

Firewalld is a Fedora project that "provides a dynamically managed firewall with support for network/firewall zones to define the trust level of network connections or interfaces".

308 questions
Newest Active Bountied Unanswered
1 vote
1 answer
31 views

I have a small server (Ubuntu 24.04.3 LTS) with an external address 1.2.3.4. I have 2 internal ports 192.168.0.1 and 192.168.1.1. I want to be able to use the same IP address internally and externally ...
JohnB's user avatar
  • 11
0 votes
0 answers
100 views

Dear ServerFault community! I run Fedora Workstation (currently version 42) on my laptop, and would like to configure my firewall to just reject or drop all incoming connections to keep my system ...
user1326024's user avatar
  • 13
0 votes
0 answers
53 views

this is in RHEL-8.10 x86-64 from a clean install from rhel-8.10-x86_64-dvd.iso and only using the public.xml file; the only things I do is # quad port nic with eno4 being my wan connection firewall-...
ron's user avatar
  • 9,198
0 votes
0 answers
33 views

I want to add an IGMP protocol to firewalld on a RHEL9 host. I could easily achieve it by running the following command: firewall-cmd --add-protocol=igmp However, things become different when it comes ...
NeilWang's user avatar
  • 270
3 votes
1 answer
414 views

I have an issue setting up my firewalld to have a perfect link together with docker and fail2ban. First, what I want to achive is the following traffic routing setup: [PUBLIC] -> [FIREWALLD] -&...
Marco Klein's user avatar
  • 151
2 votes
1 answer
298 views

I'm having trouble with libvirt kvm's routed networks where a VM inside a routed virtual network can ping every VM in my home subnet except the default gateway... or any gateway for that matter. I ...
Fulmen3161's user avatar
  • 21
0 votes
0 answers
188 views

I have a wireguard VPN running to access my local network from outside. I used to use nft but for that server, I use firewalld. Here is my nft command to allow masquerade: PostUp = nft add rule inet ...
無名前's user avatar
  • 741
0 votes
0 answers
554 views

Using this configuration: $ sudo firewall-cmd --list-all --zone=myzone myzone (active) target: default icmp-block-inversion: no interfaces: sources: 192.168.0.10/32 services: ports: ...
StampyCode's user avatar
  • 101
0 votes
0 answers
305 views

config forward port firewall-cmd --permanent --add-masquerade firewall-cmd --permanent --add-forward-port=port=81:proto=tcp:toaddr=127.0.0.1:toport=80 firewall-cmd --reload now, this is my firwall-...
Yunbin Liu's user avatar
  • 101
4 votes
2 answers
7k views

Debugging a software problem, I detected a state where the attempt to make a TCP connection resulted in a "No route to host" error message. This was especially confusing as ping had no such ...
U. Windl's user avatar
  • 1,777
0 votes
0 answers
159 views

Something I am struggling to wrap my head around is the relationship between firewallD zone default behaviour and IPTables-NFT chain default behaviour. I have setup a few firewalld direct rules that ...
PrimeYeti's user avatar
  • 1
0 votes
0 answers
132 views

OS: RHEL8. Goal: Forward SIP and RTP from VM main interface(ens192) to virtual manually created(ens100) For Testing I trying to forward only ICMP packets, but it's not working. (VM1) --icmp--> ...
thomasz's user avatar
  • 31
0 votes
1 answer
72 views

We have LinuxMachine(VoiceBiometrics) and customers VoiceBot. LinuxMachine needs only SIP/SDP and RTP traffic from VoiceBot. Customer network engineers configured on cisco device traffic mirroring(gre ...
thomasz's user avatar
  • 31
0 votes
0 answers
170 views

I have a linux box acting as router that has 2 interfaces running firewalld. One is "EXTERNAL" and is connected to the internet. The other is "TRUSTED" and connects to internal ...
Rob Collins's user avatar
  • 1
0 votes
1 answer
366 views

I have a Raspberry Pi with an ethernet connection on the end0 interface to the 10.15.16.0/20 network. It has a static IP address on this network at 10.20.30.15. The Pi is also connected to my ...
Ananth's user avatar
  • 101

15 30 50 per page
1
2 3 4 5
21