Scribd Logo
Upload

Welcome to Scribd!

  • 18 views

    Admin2 Day7

    Uploaded by

    MOFEED AFANDI
    The document discusses network security and firewall configuration using firewalld. It provides details on default ports for common services like HTTP, FTP, and HTTPS. It also describes how to add and remove services and ports for firewalld using firewall-cmd, and how to configure firewall zones. The document concludes with an overview of SELinux modes.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Admin2 Day7

    Uploaded by

    MOFEED AFANDI
    18 views2 pages
    The document discusses network security and firewall configuration using firewalld. It provides details on default ports for common services like HTTP, FTP, and HTTPS. It also describes how to add and remove services and ports for firewalld using firewall-cmd, and how to configure firewall zones. The document concludes with an overview of SELinux modes.

    Original Description:

    Linux admin

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses network security and firewall configuration using firewalld. It provides details on default ports for common services like HTTP, FTP, and HTTPS. It also describes how to add and remove services and ports for firewalld using firewall-cmd, and how to configure firewall zones. The document concludes with an overview of SELinux modes.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    18 views2 pages

    Admin2 Day7

    Uploaded by

    MOFEED AFANDI
    The document discusses network security and firewall configuration using firewalld. It provides details on default ports for common services like HTTP, FTP, and HTTPS. It also describes how to add and remove services and ports for firewalld using firewall-cmd, and how to configure firewall zones. The document concludes with an overview of SELinux modes.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    of 2

    Manage network security

    firewalld.service traffic filter leagcy service IPTables


    TCP/IP
    Service Protocol Default port Number
    http 80
    ftp 21
    smtp 25
    https 443 well-known services

    http://www.yahoo.com
    change 8000 http://www.yahoo.com:8000
    application custom port 8001
    tcp udp

    # firewall-cmd --list-services
    # firewall-cmd --list-ports
    # firewall-cmd --add-service=ftp Run time
    # firewall-cmd --add-port=8000/tcp Run time

    # firewall-cmd --add-service=ftp --permanent


    # firewall-cmd --add-port=8000/tcp --permanent
    # firewall-cmd --reload must reload to take effect

    # firewall-cmd --remove-service=ftp --permanent


    # firewall-cmd --remove-port=8000/tcp --permanent
    # firewall-cmd --reload

    Firewall Zones
    pre configured saved profiles
    Default Zones

    # firewall-cmd --list-all-zones
    # firewall-cmd --set-default-zone=drop activate drop zone profile
    # firewall-cmd --set-default-zone=public activate drop zone profile
    # firewall-cmd --list-all
    -----------------------------------------------------------------------------------
    ----------
    SElinux

    has three modes


    Enforced Mode SElinux Enabled and block
    Permissive Mode SElinux Enabled just print warrning
    Disabled Mode SElinux Disabled No SElinux

    # getenforce view SElinux Status


    # setenforce 0 Or 1 0 Permissive 1 Enforce Run time

    # vim /etc/selinux/config set SElinux Permanent Reboot system

    You might also like