firewalld

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
firewalld [2020/05/17 08:44] danifirewalld [2020/05/17 08:47] (current) – [IPSET] dani
Line 377: Line 377:
  
 =====IPSET===== =====IPSET=====
 +**Very important:** This procedure does not work with ''firewalld'' and ''nftables'' backend!
 +
 To setup a blacklist using ipset, you have to follow this example: To setup a blacklist using ipset, you have to follow this example:
  
   - If you want to add first an old (active) ''ipset'' rule, do following:<code bash>   - If you want to add first an old (active) ''ipset'' rule, do following:<code bash>
 ipset save blockednets > ipsetsavelist.ipset ipset save blockednets > ipsetsavelist.ipset
-sed -e 's/^add blockednets //' ipsetsavelist.ipset | grep -Ev '^create'blockednets+sed -e 's/^add blockednets //' ipsetsavelist.ipset | grep -Ev '^create'list
 </code> </code>
   - Create the 'hash:net' ipset hash:<code bash>   - Create the 'hash:net' ipset hash:<code bash>
  • firewalld.1589697848.txt.gz
  • Last modified: 2020/05/17 08:44
  • by dani