X

Select Your Currency

Euro lei Romanian new Leu
X

Select Your Currency

Euro lei Romanian new Leu

Knowledge Base

HomepageKnowledge BaseSetari FirewallSetari/Settings firewall - firewall...

Setari/Settings firewall - firewall-cmd

Please open ONLY the services/ports that you have to use!

See Firewalld services list
firewall-cmd --get-services

#Allow SSH connections on tcp port 22
firewall-cmd --zone=public --permanent --add-service=ssh

#Allow other port on SSH and open that port (don't forget sshd.config)
firewall-cmd --zone=public --permanent --add-port=2233/tcp

#Remove SSH service ( which is on port 22)
firewall-cmd --zone=public --permanent --remove-service=ssh

#FTP
firewall-cmd --zone=public --permanent --add-service=ftp

#HTTP/S
firewall-cmd --zone=public --permanent --add-service=http
firewall-cmd --zone=public --permanent --add-service=https

#SMTP/S
firewall-cmd --zone=public --permanent --add-service=smtp
firewall-cmd --zone=public --permanent --add-service=smtps

#IMAP/S, POP3/S
firewall-cmd --zone=public --permanent --add-service=imap
firewall-cmd --zone=public --permanent --add-service=imaps
firewall-cmd --zone=public --permanent --add-service=pop3
firewall-cmd --zone=public --permanent --add-service=pop3s

#DNS
firewall-cmd --zone=public --permanent --add-service=dns

#MySQL
firewall-cmd --zone=public --permanent --add-service=mysql

#COUNTER STRIKE/STEAM
    #Steam Friends Service
firewall-cmd --zone=public --permanent --add-port=1200/udp
firewall-cmd --zone=public --permanent --add-port=4380/udp

    #STEAM MAIN UDP
firewall-cmd --zone=public --permanent --add-port=27000-27015/udp
firewall-cmd --zone=public --permanent --add-port=27015-27030/udp
firewall-cmd --zone=public --permanent --add-port=27014-27050/tcp


#TEAMSPEAK
    #VOICE
firewall-cmd --zone=public --permanent --add-port=9987/udp
    #DATA
firewall-cmd --zone=public --permanent --add-port=30033/tcp
    #TSDNS
firewall-cmd --zone=public --permanent --add-port=41144/tcp
    #QUERY
firewall-cmd --zone=public --permanent --add-port=10011/udp
    #Weblist,Accounting server/licenses
firewall-cmd --zone=public --permanent --add-port=2011-2110/udp

#RICH RULES (adapt it as you need it. you can block/permit per IP or entire classes)
firewall-cmd --permanent --zone=public --add-rich-rule='rule family=ipv4 source address=0.0.0.0/0 port port=22 protocol=tcp accept'
firewall-cmd --permanent --zone=public --add-rich-rule='rule service name=ssh family=ipv4 source address=0.0.0.0/0 accept'
firewall-cmd --permanent --add-rich-rule='rule service name=ssh limit value=10/m accept'
firewall-cmd --permanent --add-rich-rule="rule family='ipv4' source address='0.0.0.0/0' reject"
firewall-cmd --permanent --add-rich-rule='rule service name=ssh reject'
firewall-cmd --permanent --zone=public --add-rich-rule='rule service name=ssh family=ipv4 source address=0.0.0.0/0 accept'

#apply rules and restart firewalld
firewall-cmd --reload

#See current/all rules
firewall-cmd --list-all

#Flush/delete all current rules from firewalld (use this to start over)
firewall-cmd --permanent --reset-to-defaults

#EDIT/DELETE firewall rules
nano /etc/firewalld/zones/public.xml

Can't find the information you are looking for?

Create a Support Ticket
Did you find it useful?
(14011 times viewed / 68 people found it helpful)

Categories

Server/VPS/VDS (2)Setari Firewall (5)Acces server prin IBM AMM (0)Instalare Vm OpenNebula (0)Domenii (4)LibreNMS monitorizare / monitoring (1)FreeBSD (2)Magento , PrestaShop system-requirements (2)eMail (4)Domain Name Registry (3)General (2)Reseller Hosting (0)

Most Recently Added Topics

Trimitere eMail YahooTrimitere eMail catre YAHOOSetari casuta eMailFortiMailMagento system-requirementsPrestaShop system-requirementsInstalarea MySQL pe FreeBSDUpdate FreeBSD 12Setari/Settings firewall - firewall-cmdHow to setup server for monitoring

Web Hosting Billing by WISECP

Call now to get more detailed information about our products and services.

0850 123 45 67

Copyright © 2026 All Rights Reserved

info@example.com

178 Lodgeville Road, Minneapolis, Minnesota, USA
This site is GDPR compliant.

Other Links

 Contact Us Our References News from Us Articles from Blog Knowledge Base License Verification Privacy Policy Service Agreement

Web Hosting

 Unlimited Web Hosting SEO Hosting Wordpress Hosting Individual Packages Business Packages WordPress Hosting Joomla Hosting OpenCart Hosting

Server Services

 Germany Dedicated Server France Dedicated Server US Dedicated Server Turkey Dedicated Servers Germany VPS / VDS Server France VPS / VDS Server Turkey VPS / VDS Server US VPS / VDS Server

Domain Name Registry

 .com Domain Registration .net Domain Registration .org Domain Registration .in Domain Registration .co Domain Registration .site Domain Registration .mobi Domain Registration .pro Domain Registration
Top