firewalld usage

-


[root@localhost ~]# sudo firewall-cmd --state
running
[root@localhost ~]#  firewall-cmd --list-all
public (active)
  target: default
  icmp-block-inversion: no
  interfaces: ens33
  sources:
  services: ssh dhcpv6-client
  ports:
  protocols:
  masquerade: no
  forward-ports:
  source-ports:
  icmp-blocks:
  rich rules:
               
[root@localhost ~]# firewall-cmd --get-zones
block dmz drop external home internal public trusted work
[root@localhost ~]#  firewall-cmd --zone=public --add-service=http
success
[root@localhost ~]#  firewall-cmd --zone=public --add-service=https
success
[root@localhost ~]# firewall-cmd --zone=public --list-services
ssh dhcpv6-client http https
[root@localhost ~]# firewall-cmd --zone=public --permanent --add-service=http
success
[root@localhost ~]# firewall-cmd --zone=public --permanent --list-services
ssh dhcpv6-client http
[root@localhost ~]# firewall-cmd --zone=public --permanent --add-service=https
success
[root@localhost ~]#


Comments

Post a Comment

Popular posts from this blog

ansible redhat cluster qorum qdevice

-
- hosts: localhost   user: root   become: yes   become_method: sudo   tasks:   - name: high availability is removed/installed     yum: name='@High Availability' state=present   - name: resilent storage is removed/installed     yum: name='@Resilient Storage' state=present   - name: install pcs pacemaker fence-agent-all     command: yum install pcs pacemaker fence-agents-all   - name: pcsd is running and enabled     service:      name=pcsd      state=started      enabled=yes   - firewalld:       service: high-availability       permanent: yes       state: enabled [root@localhost ~]#  pcs cluster setup --start --name cluster cluster1 cluster2 --force Destroying cluster on nodes: cluster1, cluster2... cluster1: Stopping Cluster (pacemaker)... cluster2: Stopping C...
Read more

PE 3.9.0 on centos 6

-
[localhost/puppet.kiran.com] mktemp -d -t pe-installer-XXXXXXXX /tmp/pe-installer-0Tf3iTLy [localhost/puppet.kiran.com] chmod 700 '/tmp/pe-installer-0Tf3iTLy' [localhost/puppet.kiran.com] mkdir -p /var/log/pe-installer [localhost/puppet.kiran.com] chmod 700 '/var/log/pe-installer' [localhost/puppet.kiran.com] mkdir -p /etc/puppetlabs/installer/ [localhost/puppet.kiran.com] chmod 700 '/etc/puppetlabs/installer' Copying /opt/puppet/share/installer/installer to puppet.kiran.com:/tmp/pe-installer-0Tf3iTLy/install. Copying /tmp/installer-content20191004-8962-6nw7c9 to puppet.kiran.com:/tmp/pe-installer-0Tf3iTLy/puppet.kiran.com.answers. [localhost/puppet.kiran.com] /tmp/pe-installer-0Tf3iTLy/install/puppet-enterprise-installer -D -a /tmp/pe-installer-0Tf3iTLy/puppet.kiran.com.answers ======================================================================== Puppet Enterprise v3.7.0 installer Puppet Enterprise documentation can be found at http://docs.puppetlabs.com/pe/...
Read more

gfs2 cluster

-
WARNINGS: No stonith devices and stonith-enabled is not false Stack: corosync Current DC: NONE Last updated: Sat Oct 26 22:32:30 2019 Last change: Sat Oct 26 22:19:04 2019 by root via cibadmin on cluster2 2 nodes configured 1 resource configured Node cluster1: UNCLEAN (offline) Node cluster2: UNCLEAN (offline) Full list of resources:  Resource Group: halvmfs      halvm (ocf::heartbeat:LVM): Stopped Daemon Status:   corosync: active/disabled   pacemaker: active/disabled   pcsd: active/enabled [root@cluster1 ~]# mkdir /xfs [root@cluster1 ~]# clear [root@cluster1 ~]# pcs resource create xfsfs filesystem device="/dev/vg/cluster" directory="/xfs" Assumed agent name 'ocf:heartbeat:Filesystem' (deduced from 'filesystem') Error: required resource option 'fstype' is missing, use --force to override [root@cluster1 ~]# pcs status^C [root@cluster1 ~]#  pcs resource create xfsfs filesystem device="/dev/vg/cluster...
Read more