Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- $ rpm -q firewalld
- firewalld-0.6.3-1.fc29.noarch
- $ cd /usr/lib/firewalld/zones/
- $ cat drop.xml
- <?xml version="1.0" encoding="utf-8"?>
- <zone target="DROP">
- <short>Drop</short>
- <description>Unsolicited incoming network packets are dropped. Incoming packets that are related to outgoing network connections are accepted. Outgoing network connections are allowed.</description>
- </zone>
- $ grep -i icmp *
- $
- $ cat public.xml
- <?xml version="1.0" encoding="utf-8"?>
- <zone>
- <short>Public</short>
- <description>For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.</description>
- <service name="ssh"/>
- <service name="mdns"/>
- <service name="dhcpv6-client"/>
- </zone>
- $ sudo iptables-save
- ...
- -A FWDI_public -p icmp -j ACCEPT
- ...
- -A IN_public -p icmp -j ACCEPT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement