However, at the end > firewall-cmd --zone=monitoring --add-interface=ens192 > > This results in a zone conflict. I'm not sure if it's even possible to > have two zones on the interface. > > Hi Nick, I don't believe an interface can belong to multiple zones. Instead I think you what a rich rule, the example below would add this to the default zone firewall-cmd –add-rich-rule 'rule family=“ipv4” source address=“x.x.x.x/16” service name=“http” accept' _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: firewalld rule syntax
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: firewalld rule syntax
- From: Clint Dilks <clintd@xxxxxxxxxxxxx>
- Date: Wed, 18 Nov 2015 08:01:04 +1300
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <564B63F4.7080208@valnet.net>
- References:
- firewalld rule syntax
- From: Nick Bright
- Re: firewalld rule syntax
- From: Nick Bright
- firewalld rule syntax
- Prev by Date: centos 7 and keychain
- Next by Date: Re: firewalld rule syntax
- Previous by thread: Re: firewalld rule syntax
- Next by thread: Re: firewalld rule syntax
- Index(es):
 |