Centos Firewall Source Rule Creation

This is useful for protecting your elasticsearch cluster.  Something like graylog should be the only thing that is able to connect to it outside of the other elasticsearch nodes.

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="192.168.5.1" port protocol="tcp" port="9300" accept'
firewall-cmd --reload

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w
Cancel

Connecting to %s

Powered by WordPress.com.

Up ↑

%d bloggers like this: