how to block incoming and outgoing connections with IP?
by Patrick Hinkley
Given an IP address, how can I prevent any connection both to and from that IP? If there are multiple methods, please describe the pros and cons of each.
I've found a lot of contradictory and confusing information about this online and in the documentation.
Thanks for any help!
8 years, 7 months
Ubuntu integration
by Marcos Alano
Hello people!
I like to discuss firewall-applet integration with Ubuntu.
Ubuntu uses indicators which need special code to shows up the icon.
Any developers like to develop this integration?
Thanks. ;)
--
Marcos Alano
----------------------------------------------
P: Por que este email é tão curto?
R: http://five.sentenc.es
----------------------------------------------
8 years, 10 months
port forwarding question
by Max
Hi.
After reading documentation it's still unclear - when I setup port forwarding from
external to internal or trusted network, do I have to add corresponding ports into zones?
I mean if I have following rule in my 'external' zone:
forward-ports:
port=2202:proto=tcp:toport=22:toaddr=192.168.2.2
Do I need to add port 2202 to some zone? Port 22? Or will forwarding in itself is enough?
cheers,
Max.
8 years, 10 months
services vs ports
by Max
Hi.
Did I got it right is that 'services' is the same thing as 'ports' in firewalld?
I mean --add-port=... and --add-service=... do exactly the same thing provided that
the same port/protocol is used in the corresponding service description.
cheers,
Max.
8 years, 10 months
Adding missing icmp-types
by Wallace Tan
Hi,
How do we add the missing icmptypes in firewalld?
For example: timestamp-reply and timestamp-request
# firewall-cmd --get-icmptypes
destination-unreachable echo-reply echo-request parameter-problem redirect
router-advertisement router-solicitation source-quench time-exceeded
# ls -l /usr/lib/firewalld/icmptypes/
total 36
-rw-r-----. 1 root root 222 Jun 10 2014 destination-unreachable.xml
-rw-r-----. 1 root root 173 Jun 10 2014 echo-reply.xml
-rw-r-----. 1 root root 210 Jun 10 2014 echo-request.xml
-rw-r-----. 1 root root 225 Jun 10 2014 parameter-problem.xml
-rw-r-----. 1 root root 185 Jun 10 2014 redirect.xml
-rw-r-----. 1 root root 227 Jun 10 2014 router-advertisement.xml
-rw-r-----. 1 root root 223 Jun 10 2014 router-solicitation.xml
-rw-r-----. 1 root root 248 Jun 10 2014 source-quench.xml
-rw-r-----. 1 root root 253 Jun 10 2014 time-exceeded.xml
Thanks,
Wallace
8 years, 10 months