57 lines
1.7 KiB
Plaintext
57 lines
1.7 KiB
Plaintext
# CentOS7 FirewallD firewall
|
|
firewalld:
|
|
enabled: True
|
|
default_zone: public
|
|
services:
|
|
sshcustom:
|
|
short: sshcustom
|
|
description: SSH on port 3232 and 5252. Secure Shell (SSH) is a protocol for logging into and executing commands on remote machines. It provides secure encrypted communications. If you plan on accessing your machine remotely via SSH over a firewalled interface, enable this option. You need the openssh-server package installed for this option to be useful.
|
|
ports:
|
|
tcp:
|
|
- 3232
|
|
- 5252
|
|
modules:
|
|
- some_module_to_load
|
|
destinations:
|
|
ipv4:
|
|
- 224.0.0.251
|
|
- 224.0.0.252
|
|
ipv6:
|
|
- ff02::fb
|
|
- ff02::fc
|
|
zones:
|
|
public:
|
|
short: Public
|
|
description: "For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted."
|
|
services:
|
|
- http
|
|
- https
|
|
- ssh
|
|
- dhcpv6-client
|
|
# ports:
|
|
# - comment: For our dummy service
|
|
# port: 1234
|
|
# protocol: tcp
|
|
# forward_ports:
|
|
# - comment: forward 123 to other machine
|
|
# portid: 123
|
|
# protocol: tcp
|
|
# to_port: 321
|
|
# to_addr: 1.2.3.4
|
|
# rich_rules:
|
|
# - family: ipv4
|
|
# source:
|
|
# address: 192.168.1.0/24
|
|
# invert: true
|
|
# port:
|
|
# portid: 123-321
|
|
# protocol: udp
|
|
# log:
|
|
# prefix: local
|
|
# level: notice
|
|
# limit: 3/s
|
|
# audit:
|
|
# limit: 2/h
|
|
# reject:
|
|
# type: icmp-host-prohibited
|