On Thu, May 06, 2021 at 03:58:44PM -0000, Jason Long wrote:
Thanks.
I have other questions:
1- How can I remove multiple ports?
v0.9.0 added support for breaking and coalescing of port ranges.
If you're using an earlier version then maybe you're hitting that issue.
You have to use the exact port range shown it the config. Otherwise it
won't work.
2- When I want to remove some ports, then it shows me "Warning:
NOT_ENABLED:" message!
# firewall-cmd --list-all
FedoraServer (active)
target: default
icmp-block-inversion: no
interfaces: enp0s17 enp0s8
sources:
services: cockpit dhcp dhcpv6-client high-availability http https ssh
ports: 53/udp 135/tcp 137-138/udp 139/tcp 389/tcp 389/udp 445/tcp 464/tcp 464/udp
636/tcp 1024-5000/tcp 3268-3269/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
# firewall-cmd --remove-port=389/tcp --permanent
Warning: NOT_ENABLED: 389:tcp
success
You show the _runtime_ config above, but this command manipulates the
_permanent_ config. Maybe 389/tcp has not been added to the permanent
config.