Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


Firewalld - creating zone based on destination IP
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

Firewalld - creating zone based on destination IP

hackermanhackerman Member
edited January 2021 in Help

Hi,

I have a server with a single NIC, single interface, but multiple IPs.

I want to whitelist access to a port on the server but only on one of the IPs.

So with iptables I would do:
-A INPUT -p tcp -m tcp -d 180.10.10.10 --dport 12345 -j ACCEPT

and that would let me open that port but only on IP '180.10.10.10'.

How would I achieve the same with Firewalld? From my understanding Firewalld works based on interfaces.

I have tried:
firewall-cmd --zone=customzone --add-service=12345/tcp --set-destination=ipv4:180.10.10.10/32 --permanent
but that doesn't do it :disappointed: :smiley:

Comments

Sign In or Register to comment.