On 2020-06-16 07:24, Kenneth Porter wrote:
--On Tuesday, June 16, 2020 8:17 AM +0800 Ed Greshko
<ed.greshko(a)greshko.com> wrote:
>> For RHEL/CentOS, I start by listing the back end rules.
>>
>
> What would be the command to list those?
This looks like a good starting point:
<
https://wiki.nftables.org/wiki-nftables/index.php/Quick_reference-nftable...
The other thing I found odd is that I did
firewall-cmd --set-log-denied=all
And saw no journal entries showing the reject. I used wireshark. and I do see.
129.168.2.116----->192.168.122.152 Transmission Control Protocol, Src Port: 44870, Dst
Port: 22, Seq: 0, Len: 0
and immediately after
192.168.2.127----->192.168.2.116 Internet Control Message Protocol (Port unreachable)