Hi! I have a minimal installation of centos8 + packages for freeipa as a vbox vm. there is something strange with the firewall rules :
[root@ldap ~]# iptables -S -P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT
[root@ldap ~]# firewall-cmd --get-active-zones public interfaces: enp0s17
[root@ldap ~]# firewall-cmd --state running
[root@ldap ~]# firewall-cmd --zone=public --permanent --list-all public target: default icmp-block-inversion: no interfaces: sources: services: cockpit dhcpv6-client dns freeipa-ldap freeipa-ldaps http https ssh ports: 22/tcp 60000/tcp protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules:
Does anyone know what is the problem or how can i fix this? Thank you! Adrian
Hi! I have a minimal installation of centos8 + packages for freeipa as a vbox vm. there is something strange with the firewall rules :
I'm not sure but does CentOS 8 still use iptables?
Regards, Simon
[root@ldap ~]# iptables -S -P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT
[root@ldap ~]# firewall-cmd --get-active-zones public interfaces: enp0s17
[root@ldap ~]# firewall-cmd --state running
[root@ldap ~]# firewall-cmd --zone=public --permanent --list-all public target: default icmp-block-inversion: no interfaces: sources: services: cockpit dhcpv6-client dns freeipa-ldap freeipa-ldaps http https ssh ports: 22/tcp 60000/tcp protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules:
Does anyone know what is the problem or how can i fix this? Thank you! Adrian
CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
https://pkgs.org/download/libvirt
maybe libvirt use this.. i get anything with root. Maybe you should install this.
I think there is a better solution.. a better program.
Sent with ProtonMail Secure Email.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Wednesday, 11. December 2019 10:51, Simon Matter via CentOS centos@centos.org wrote:
Hi! I have a minimal installation of centos8 + packages for freeipa as a vbox vm. there is something strange with the firewall rules :
I'm not sure but does CentOS 8 still use iptables?
Regards, Simon
[root@ldap ~]# iptables -S -P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT [root@ldap ~]# firewall-cmd --get-active-zones public interfaces: enp0s17 [root@ldap ~]# firewall-cmd --state running [root@ldap ~]# firewall-cmd --zone=public --permanent --list-all public target: default icmp-block-inversion: no interfaces: sources: services: cockpit dhcpv6-client dns freeipa-ldap freeipa-ldaps http https ssh ports: 22/tcp 60000/tcp protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: Does anyone know what is the problem or how can i fix this? Thank you! Adrian
CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
On Wed, Dec 11, 2019 at 3:38 PM joernboe via CentOS centos@centos.org wrote:
..okay i assume there are better alternatives on the road..
CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Hi,
https://www.redhat.com/en/blog/using-nftables-red-hat-enterprise-linux-8
thanks
--- Thomas Stephen Lee
On Wed, Dec 11, 2019 at 10:58:36AM +0200, Adrian Sevcenco wrote:
Hi! I have a minimal installation of centos8 + packages for freeipa as a vbox vm. there is something strange with the firewall rules :
[...]
Does anyone know what is the problem or how can i fix this?
Firewalld in CentOS8 uses nftables instead of iptables.
Use 'nft list ruleset' to see the rules set up by Firewalld.
-
Adrian Sevcenco -
joernboe -
Jonathan Billings -
Simon Matter -
Thomas Stephen Lee