Stack Overflow
Stack Overflow

Questions tagged [firewalld]

Questions regarding firewalld a firewall service daemon

Firewalld is a service daemon with D-Bus interface

Firewalld provides a dynamically managed firewall with support for network/firewall zones that define the trust level of network connections or interfaces.

Site: http://www.firewalld.org/

109 questions
19
votes
1 answer

AllowZoneDrifting - Firewalld: What is it and should I disable it?

I am new here, so please forgive me if I am asking something silly. I have created a DO droplet on CentOS 8. After installing firewalld, I checked its status and it gives a warning. Apr 24 05:56:31 centos-s-1vcpu-1gb-blr1-01 firewalld[2956]:…
Manohar Bhatia
  • 191
  • 1
  • 1
  • 5
13
votes
1 answer

How to make Docker container see real user IP?

The problem Inside nginx-proxy Docker container (more info below), I always see the same IP adress for every connection: 172.18.0.1 (which is the nginx-proxy network gateway). For example: nginx.1 | www.my-site.tld 172.18.0.1 - -…
ololoepepe
  • 540
  • 5
  • 14
8
votes
1 answer

How to setup FirewallD to filter traffic to docker exposed port

I have setup a pi-hole docker container and exposed the dns ports and port 80 on CentOS7. However the ports are available for all sources now which is not very handy since its running on a VPS. So I am trying to have firewallD filter the traffic…
Warsenius
  • 151
  • 1
  • 7
6
votes
2 answers

How to correct configuration for firewalld and docker/nginx?

I have a CentOS 7 server which was running happily for 600+ days until it was rebooted recently, after which incoming web requests were receiving HTTP523 (Origin Is Unreachable) error codes (via Cloudflare, if that makes a difference?) unless I…
DrMeers
  • 3,689
  • 1
  • 29
  • 33
6
votes
5 answers

How to reload Firewalld service using Ansible?

I added some rule to firewalld in centos 7 with ansible. But I must reload firewalld daemon thus service work properly. Is there any idea? Here is my ansible code: - name: Add port to firewalld firewalld: port: "{{ item }}" permanent: yes …
Ali
  • 97
  • 1
  • 9
5
votes
0 answers

telnet timeout while port is open

I bought a VPS and built a shadowsocks server on it. It runs well for like 2 months and suddenly failed to work, i.e. I cannot use it overcome the GFW. So I check the server, reinstall everything, check the firewall, but still couldn't solve the…
Ch3_ong
  • 51
  • 4
5
votes
1 answer

firewall-cmd remove rich rule fails

I'm trying to remove some rich rules from firewall-cmd and it seems to work: firewall-cmd --remove-rich-rule 'rule family="ipv4" source address="10.4.220.143/32" port protocol="tcp" port="13782" accept' success But after I reload the rules and…
bluethundr
  • 540
  • 10
  • 39
  • 81
5
votes
2 answers

Ansible: firewalld and adding new zone

I' trying to add the following to an Ansible playbook: firewall-cmd --permanent --new-zone dockerc firewall-cmd --permanent --zone dockerc --add-source 172.17.0.0/16 firewall-cmd --permanent --zone dockerc --add-port 8443/tcp firewall-cmd…
Magick
  • 3,281
  • 14
  • 54
  • 82
4
votes
0 answers

centos firewall-cmd port forward to a range of dest port does not work

I'm trying to setup a firewalld rule to forward 80/tcp to 8080-8081, the rule was setup correctly, but seems only partially working. The problem is that the traffic is always forwarded to 8080 not 8081, is anything wrong ? Below is my env: create…
Feng Xi
  • 795
  • 1
  • 5
  • 25
4
votes
2 answers

docker makes port of container open to public

I have on centos7 docker container with nginx. Port 80 is available from outside despite on that this port NOT opened in firewalld. here rules for public zone: # firewall-cmd --zone=public --list-all public (active) target: default …
Trav Erse
  • 141
  • 1
  • 2
  • 11
3
votes
0 answers

How to configure firewalld with docker 20.10

I realized that recently docker add integration with firewalld and I just want to setup my server using firewalld instead of iptables boring rules and chains. This is my docker zone output: root@test:~# sudo firewall-cmd --zone=docker --list-all…
Masoud Tavakkoli
  • 761
  • 8
  • 26
3
votes
0 answers

Firewalld And Container Published Ports

On a KVM guest of my RHEL8 host, whose KVM guest is running CentOS7, I was expecting firewalld to by default block outside access to an ephemeral port published to by a Docker Container running nginx. To my surprise the access ISN'T blocked. Again,…
Howard Sherman
  • 31
  • 2
3
votes
1 answer

Converting IPTables rules to Firewalld

I'm working on setting up Cuckoo Sandbox and I have several IPTables rules that need to be converted to Firewalld rules. Here's the reference page for the Cuckoo Sandbox install guide:…
Maumee River
  • 216
  • 1
  • 5
  • 24
3
votes
2 answers

Firewalld Configuration on Centos 7.2

I have installed MongoDB on my CentOS 7.2 VPS and trying to access to the DB via Robomongo from my client. However, when I try to connect the server from the 27017 port, I get "Network is unreachable" error. I have enabled the firewalld on the…
Phyticist
  • 477
  • 5
  • 16
2
votes
1 answer

Unable to access Eureka dashboard inside a docker container

I am setting up a docker container test environment of a Spring Cloud Config Server and Eureka Discovery Service to a server running Oracle Linux 8. Before anything else, I added the following port from firewalld to allow inbound (reloaded and…
Rye
  • 185
  • 1
  • 10
1
2 3 4 5 6 7 8