INPUT_direct chain
by Jorge Fábregas
Hi,
What's the purpose of the *INPUT_direct* custom-chain in the
filter/INPUT chain? Is this the recommended chain to use when inserting
custom rules via the --direct option? Is it sort of like, to keep
things organized?
Thanks,
Jorge
9 years, 8 months
Exporting Changes
by Nathanael D. Noblet
Hello,
So I finally stopped disabling firewalld because I couldn't get what I
wanted working. Now everything is running along great. I would like to
now export the changes from a default system so that I can push it to
other machines in a similar situation.
Sincerely,
--
Nathanael d. Noblet
9 years, 12 months
ssh only from known ip addresses
by Michael C Cambria
Hi,
How can firewalld be configured to allow access to sshd from only
specific IP addresses?
For each IP address, I'll explicitly allow access:
firewall-cmd --add-rich-rule='rule family="ipv4" source
address="192.168.1.0/24" service name="ssh" accept'
But how does one reject the rest? source address="0.0.0.0/32" isn't
allowed.
Thanks,
MikeC
9 years, 12 months