Firewalld Basic Commands

Introduction

We present a quick introduction to firewalld, a free and open-source firewall management tool for Linux operating systems. This guide can be useful for users of the TFGrid deploying on full and micro VMs as well as other types of deployment.

Firewalld Basic Commands

Install Firewalld

  • apt install firewalld -y
    

See the Status of Firewalld

  • firewall-cmd --state
    

Enable Firewalld

  • systemctl enablefirewalld
    

Stop Firewalld

  • systemctl stop firewalld
    

Start Firewalld

  • systemctl start firewalld
    

Disable Firewalld

  • systemctl disable firewalld
    

Mask Firewalld

  • systemctl mask --now firewalld
    

Unmask Firewalld

  • systemctl unmask --now firewalld
    

Add a Service to Firewalld

  • Temporary
    • firewall-cmd --add-service=<service_name>
      
  • Permanent
    • firewall-cmd --add-service=<service_name> --permanent
      

Remove a Service to Firewalld

  • Temporary
    • firewall-cmd --remove-service=<service_name>
      
  • Permanent
    • firewall-cmd --remove-service=<service_name> --permanent
      

Remove the Diles of a Service to Firewalld

  • rm -f /etc/firewalld/services/<service_name>.xml*
    

See if a Service is Available

  • firewall-cmd --info-service=<service_name>
    

Reload Firewalld

  • firewall-cmd --reload
    

Display the Services and the Open Ports for the Public Zone

  • firewall-cmd --list-all --zone=public
    

Display the Open Ports by Services and Port Numbers

  • By services
    • firewall-cmd --list-services
      
  • By port numbers
    • firewall-cmd --list-ports
      

Add a Port for tcp

  • firewall-cmd --zone=public --add-port=<port>/tcp
    

Add a Port for udp

  • firewall-cmd --zone=public --add-port=<port>/udp
    

Add a Port for tcp and udp

  • firewall-cmd --zone=public --add-port=<port>
    

References

ufw man pages - https://firewalld.org/documentation/man-pages/firewalld.html

Last change: 2024-10-29