This is useful for protecting your elasticsearch cluster. Something like graylog should be the only thing that is able to connect to it outside of the other elasticsearch nodes.
firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="192.168.5.1" port protocol="tcp" port="9300" accept' firewall-cmd --reload
Leave a Reply