Opening Ports via Firewalld CLI / GUI not working

Support for security such as Firewalls and securing linux
Post Reply
dsensenig
Posts: 2
Joined: 2015/02/27 23:56:34

Opening Ports via Firewalld CLI / GUI not working

Post by dsensenig » 2015/02/28 17:18:21

Hi

Will someone please remove the veil of ignorance from my eyes. I am unable to open additional ports other than ssh on a Centos 7.0-1406 x64 (minimal install) VMware VM using iptables, firewalld (cli or gui (firewall-config)). GRC.com/shieldsup indicates if the ports are open/close/non-responsive. Port 22 is the only port which is open. The OS has been patched/updated etc. The lack of anyone else having the same issue, indicates I am doing something obviously wrong. How can one screw up check boxes on a gui interface? How hard is to reload the firewall after applying the settings to the runtime or the permanent dropdown menu? I tried opening the ports via firewall cli (iptables also) and received the same results regardless of what zone I applied the changes to.

Any help is greatly appreciated.

TIA!

d

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Opening Ports via Firewalld CLI / GUI not working

Post by TrevorH » 2015/02/28 17:33:42

For example:

Code: Select all

firewall-cmd --add-service=http
firewall-cmd --add-service=http --permanent
The first one affects the running config but will be lost on reboot/restart. The second one does not affect the running config but does make it so that it comes back after reboot/restart. You need to do both or you need to do the latter followed by a reload. You can also do it by port number using e.g.:

Code: Select all

firewall-cmd --add-port=443/tcp
firewall-cmd --permanent --add-port=443/tcp
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

dsensenig
Posts: 2
Joined: 2015/02/27 23:56:34

Re: Opening Ports via Firewalld CLI / GUI not working

Post by dsensenig » 2015/03/02 17:05:38

Hi
Me llamo es estupido! Until I install services (Zimbra for example) to listen on the "opened" ports in the firewall, the ports will be listed as closed by a port scan. Arrrggghhhh.

$60K of college edjamacation down the drain.

d a.k.a. "Pid"

Post Reply