FirewallD Sources
Clash Royale CLAN TAG#URR8PPP
up vote
0
down vote
favorite
I have 2 zones in my VPS:
iredmail (active)
target: default
icmp-block-inversion: no
interfaces: eth0
sources:
services: smtp smtp-submission pop3 pop3s imap imaps ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
public (active)
target: default
icmp-block-inversion: no
interfaces:
sources: <MY_IP>
services: ssh dhcpv6-client http https
ports: 22/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
I have the services http and https in the public zone and added "MY_IP" as the only source for this zone. I dont even have an interface for the public zone. When I try to connect to my http and https services with an IP that is not "MY_IP" I am able to do it. It is my understanding that if I add "MY_IP" as the only traffic source, "MY_IP" is the only one that is supposed to have access to the http and http services, if that is not the case, how can I prevent any traffic from a source other than "MY_IP" from reaching to the http and https services in the public zone? Thanks for the help.
linux centos networking firewalld
asked 2 mins ago
Fxbaez
109228
add a comment |Â
up vote
0
down vote
favorite
I have 2 zones in my VPS:
iredmail (active)
target: default
icmp-block-inversion: no
interfaces: eth0
sources:
services: smtp smtp-submission pop3 pop3s imap imaps ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
public (active)
target: default
icmp-block-inversion: no
interfaces:
sources: <MY_IP>
services: ssh dhcpv6-client http https
ports: 22/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
I have the services http and https in the public zone and added "MY_IP" as the only source for this zone. I dont even have an interface for the public zone. When I try to connect to my http and https services with an IP that is not "MY_IP" I am able to do it. It is my understanding that if I add "MY_IP" as the only traffic source, "MY_IP" is the only one that is supposed to have access to the http and http services, if that is not the case, how can I prevent any traffic from a source other than "MY_IP" from reaching to the http and https services in the public zone? Thanks for the help.
linux centos networking firewalld
asked 2 mins ago
Fxbaez
109228
add a comment |Â
up vote
0
down vote
favorite
up vote
0
down vote
favorite
I have 2 zones in my VPS:
iredmail (active)
target: default
icmp-block-inversion: no
interfaces: eth0
sources:
services: smtp smtp-submission pop3 pop3s imap imaps ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
public (active)
target: default
icmp-block-inversion: no
interfaces:
sources: <MY_IP>
services: ssh dhcpv6-client http https
ports: 22/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
I have the services http and https in the public zone and added "MY_IP" as the only source for this zone. I dont even have an interface for the public zone. When I try to connect to my http and https services with an IP that is not "MY_IP" I am able to do it. It is my understanding that if I add "MY_IP" as the only traffic source, "MY_IP" is the only one that is supposed to have access to the http and http services, if that is not the case, how can I prevent any traffic from a source other than "MY_IP" from reaching to the http and https services in the public zone? Thanks for the help.
linux centos networking firewalld
asked 2 mins ago
Fxbaez
109228
I have 2 zones in my VPS:
iredmail (active)
target: default
icmp-block-inversion: no
interfaces: eth0
sources:
services: smtp smtp-submission pop3 pop3s imap imaps ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
public (active)
target: default
icmp-block-inversion: no
interfaces:
sources: <MY_IP>
services: ssh dhcpv6-client http https
ports: 22/tcp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
I have the services http and https in the public zone and added "MY_IP" as the only source for this zone. I dont even have an interface for the public zone. When I try to connect to my http and https services with an IP that is not "MY_IP" I am able to do it. It is my understanding that if I add "MY_IP" as the only traffic source, "MY_IP" is the only one that is supposed to have access to the http and http services, if that is not the case, how can I prevent any traffic from a source other than "MY_IP" from reaching to the http and https services in the public zone? Thanks for the help.
linux centos networking firewalld
linux centos networking firewalld
asked 2 mins ago
Fxbaez
109228
asked 2 mins ago
Fxbaez
109228
asked 2 mins ago
Fxbaez
109228
asked 2 mins ago
Fxbaez
109228
asked 2 mins ago
Fxbaez
109228
109228
add a comment |Â
add a comment |Â
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f479019%2ffirewalld-sources%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
