Centos Firewall Source Rule Creation

This is useful for protecting your elasticsearch cluster.  Something like graylog should be the only thing that is able to connect to it outside of the other elasticsearch nodes.

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="192.168.5.1" port protocol="tcp" port="9300" accept'
firewall-cmd --reload

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Powered by WordPress.com.

Up ↑

%d bloggers like this: