Bootstrap FreeKB - Firewalld - firewall-cmd - rich rule
Firewalld - firewall-cmd - rich rule
Updated:   |  Firewalld articles

If you are not familar with firewalld and the firewall-cmd, check out our Getting Started article.

The --add-rich-rule option is used to add a rich rule. In this example, a rich rule is created so that only one FTP connection is allowed per minue.

firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.17.0.0/8 service name=telnet limit value=1/m accept' --permanent
firewall-cmd --reload

 

The --check-config command can be used to ensure there are no configuration errors.

~]$ firewall-cmd --check-config
success

 

firewall-cmd --list-all will show the rich rules.

~]# firewall-cmd --list-all
public
  target: default
  icmp-block-inversion: no
  interfaces: eth0
  sources:
  services: smtp
  ports:
  protocols:
  masquerade: no
  forward-ports:
  sourceports:
  icmp-blocks:
  rich rules:
    rule family="ipv4" source address="10.17.0.0/8" service name="telnet" limit value="1/m accept"

 

 

Did you find this article helpful?

If so, consider buying me a coffee over at Buy Me A Coffee


Comments


Add a Comment


Please enter b25bc6 in the box below so that we can be sure you are a human.