firewall on IT Quicktasks

firewall on IT Quicktaskshttps://quicktasks.ismael.casimpan.com/tags/firewall/Recent content in firewall on IT QuicktasksHugo -- gohugo.ioCopyright © 2018–2022, Ismael Casimpan Jr.; All Rights ReservedSat, 28 Sep 2019 00:20:25 +0800FirewallD Reading Materialshttps://quicktasks.ismael.casimpan.com/post/firewalld-reading-materials/Sat, 28 Sep 2019 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/firewalld-reading-materials/ https://www.certdepot.net/rhel7-get-started-firewalld/ https://www.linuxjournal.com/content/understanding-firewalld-multi-zone-configurations https://computingforgeeks.com/install-and-use-firewalld-on-ubuntu-18-04-ubuntu-16-04/iptables: Allow Specific IP to Connect via SSH.https://quicktasks.ismael.casimpan.com/post/iptables-allow-specific-ip-to-ssh/Sat, 28 Sep 2019 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/iptables-allow-specific-ip-to-ssh/ 1iptables -A INPUT -p tcp -s 114.191.33.88 --dport 22 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT 2iptables -A OUTPUT -p tcp --sport 22 -m conntrack --ctstate ESTABLISHED -j ACCEPTSpecific IP Connection to SSH Using Firewalld Rich Ruleshttps://quicktasks.ismael.casimpan.com/post/specific-ip-connection-to-ssh-using-firewalld-rich-rules/Sat, 28 Sep 2019 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/specific-ip-connection-to-ssh-using-firewalld-rich-rules/ 1sudo firewall-cmd --add-rich-rule 'rule family="ipv4" source address="192.168.10.9" service name="ssh" accept' --permanent 2sudo firewall-cmd --remove-service ssh --permanent ## needed, otherwise ssh will still be allowed for all 3sudo systemctl reload firewalld See details in https://access.redhat.com/discussions/1342573ufw Reading Materialshttps://quicktasks.ismael.casimpan.com/post/ufw-reading-materials/Sat, 28 Sep 2019 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/ufw-reading-materials/ https://www.linux.com/learn/introduction-uncomplicated-firewall-ufwufw: List Rules in Ubuntu Machinehttps://quicktasks.ismael.casimpan.com/post/ufw-list-rules-in-ubuntu-machine/Sat, 21 Sep 2019 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/ufw-list-rules-in-ubuntu-machine/ 1root@xxx:/var/log# ufw status 2Status: active 34To Action From 5-- ------ ---- 622 LIMIT Anywhere 780 ALLOW Anywhere 8443 ALLOW Anywhere 9??41908/tcp ALLOW Anywhere 10Anywhere ALLOW 115.85.11.98 1125/tcp ALLOW Anywhere 124444/tcp ALLOW Anywhere 134444/udp ALLOW Anywhere 1422 (v6) LIMIT Anywhere (v6) 1580 (v6) ALLOW Anywhere (v6) 16443 (v6) ALLOW Anywhere (v6) 1741908/tcp (v6) ALLOW Anywhere (v6) 1825/tcp (v6) ALLOW Anywhere (v6) 194444/tcp (v6) ALLOW Anywhere (v6) 204444/udp (v6) ALLOW Anywhere (v6)