This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. {{tag>centos kernel}} ====== Firewalld ====== ===== Generic (Permanent) Port ===== <sxh bash>firewall-cmd --zone=public --add-port=80/tcp --permanent firewall-cmd --reload</sxh> ===== SNMPD ===== === Create Profile === <sxh bash> vim /etc/firewalld/services/snmp.xml </sxh> <sxh> <?xml version="1.0" encoding="utf-8"?> <service> <short>SNMP</short> <description>SNMP protocol</description> <port protocol="udp" port="161"/> </service> </sxh> === Add Rule === <sxh bash>firewall-cmd --reload firewall-cmd --zone=public --add-service snmp --permanent firewall-cmd --reload</sxh> ===== Cockpit ===== <sxh bash>firewall-cmd --add-service=cockpit firewall-cmd --add-service=cockpit --permanent</sxh> ===== Allow traffic through bridge ===== <sxh>firewall-cmd --permanent --direct --passthrough ipv4 -I FORWARD -i vbr0 -j ACCEPT firewall-cmd --permanent --direct --passthrough ipv4 -I FORWARD -o vbr0 -j ACCEPT firewall-cmd --reload</sxh> ===== http/s ===== === By Service name === <sxh>firewall-cmd --zone=public --permanent --add-service=http firewall-cmd --zone=public --permanent --add-service=https firewall-cmd --reload</sxh> === By Port === <sxh> firewall-cmd --permanent --add-port=80/tcp firewall-cmd --permanent --add-port=443/tcp firewall-cmd --reload</sxh>