FirewallD

Question 1

To Enable FirewallD

Answer 1

systemctl enable

Question 2

To disable FirewallD

Answer 2

systemctl disable

Question 3

To start Firewalld

Answer 3

systemctl start

Question 4

To stop firewallD

Answer 4

systemctl stop

Question 5

To view the status of FirewallD

Answer 5

firewall-cmd –state

or

systemctl status firewalld

Question 6

To see the default zone

Answer 6

firewall-cmd –get -default-zone

Question 7

To change the default zone

Answer 7

firewall-cmd –set-default-zone= work

Question 8

To see the zones used by the network interface

Answer 8

firewall-cmd –get -active-zones

Question 9

To see the area of an interface

Answer 9

firewall-cmd –get -zone-of-interface=eth0

Question 10

To change the zone of an interface via firewalld

Answer 10

firewall-cmd –zone= work –change-interface=eth0

Question 11

To change the zone of an interface via Network manager

Answer 11

nmcli connection modify eth0 connection.zone work

Question 12

To see the zones used by the network interfaces

Answer 12

firewall-cmd –get -active-zones

Question 13

To see the configuration of a specific zone

Answer 13

firewall -cmd –zone=public –list -all

Question 14

To see the configuration of all zones

Answer 14

firewall-cmd –list -all-zones

Question 15

Create a new area

Answer 15

firewall-cmd –permanent –new-zone docker

Question 16

where can you find the files for default configurations?

Answer 16

/ usr /lib /firewalld /services

Question 17

Where can you find custom configuration files?

Answer 17

/etc / firewalld / services

Question 18

To see existing services

Answer 18

firewall-cmd –get -services

Question 19

To authorize service on a zone

Answer 19

firewall-cmd –zone= work – add -service=http

or

firewall-cmd –zone=work – add -service=http –permanent

Question 20

How to remove a service from a zone

Answer 20

firewall -cmd –zone= work –remove -service ==http

or

firewall -cmd –zone= work –remove -service ==http –permanent

Question 21

To authorize a port on a zone

Answer 21

firewall-cmd –zone= work – add -port=2222/ tcp

or

firewall-cmd –zone= work – add -port=2222 /tcp –permanent

and

firewall-cmd –zone= work – add -port=126/ udp

or

firewall-cmd –zone= work – add -port=126/ udp –permanent

Question 22

To remove a port from a area

Answer 22

firewall-cmd –zone= work – remove -port=2222/ tcp

or

firewall-cmd –zone= work – remove -port=2222/ tcp – permanent

Question 23

To redirect one port to another on the same machine

Answer 23

firewall-cmd –zone= work – add - forward -port=port=80 :proto=tcp:toport =9000

Question 24

To forward a port to another machine

Answer 24

firewall-cmd –zone= work –add -forward - port=port=80:proto= tcp:toport =8080:toaddr=192.168.10.5

Question 25

To enable masquerade

Answer 25

firewall-cmd –zone=public –add -masquerade –permanent

Question 26

To validate the masquerade info

Answer 26

cat /proc /sys /net/ipv4/ ip_forward 0

0 = not enabled, 1 = enabled

Question 27

To view the list of ICMP messages

Answer 27

firewall-cmd –get-icmptypes

Question 28

To block an Icmp message (ping)

Answer 28

firewall-cmd –zone= work – query - icmp -block = echo-request – permanent

firewall-cmd –zone= work –query icmp -block= echo-reply –permanent