다음이 있습니다(빈 항목이 여러 개 생략됨).
$ sudo firewall-cmd --list-all-zones
block
target: %%REJECT%%
icmp-block-inversion: no
masquerade: no
dmz
target: default
icmp-block-inversion: no
services: ssh
masquerade: no
drop
target: DROP
icmp-block-inversion: no
masquerade: no
external
target: default
icmp-block-inversion: no
services: ssh
masquerade: yes
home
target: default
icmp-block-inversion: no
services: ssh mdns samba-client dhcpv6-client
masquerade: no
internal
target: default
icmp-block-inversion: no
services: ssh mdns samba-client dhcpv6-client
masquerade: no
public (active)
target: default
icmp-block-inversion: no
interfaces: enp2s0
services: dhcpv6-client https ssh
ports: 50036/tcp
masquerade: no
trusted
target: ACCEPT
icmp-block-inversion: no
masquerade: no
rich rules:
rule family="ipv4" source address="myip1" service name="ssh" accept
rule family="ipv4" source address="myip2" service name="ssh" accept
rule family="ipv4" source address="myip3" service name="ssh" accept
work
target: default
icmp-block-inversion: no
services: ssh dhcpv6-client
masquerade: no
만약 내가한다면
firewall-cmd --zone=public --remove-service=ssh --permanent
그러면 내 서버에 액세스할 수 있나요? 이 trusted지역은 출처도 없고 표시도 되어 있지 않아서 혼란스럽습니다 active. 왜 한 영역만 활성화되어 있나요?
timeout옵션 서비스 삭제 명령 도 표시되지 않습니다 .