Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Firewalld - multiple services / sources?
Operating Systems Linux Red Hat Firewalld - multiple services / sources? Post 302999314 by jnojr on Friday 16th of June 2017 05:22:33 PM
Old 06-16-2017
Firewalld - multiple services / sources?
If you have a system with one network interface, and you want to allow ssh from some addresses, freeipa-ldap from others, and https (which is part of freeipa-ldap) from another one; and you do not want to have a sea of rich rules... how do you do that?

I can't tell if firewalld is just really poorly documented or very limited. I am sorely tempted to disable it and just use good ol' iptables, but I don't like the kneejerk "Just disable it!" attitude, partly because one day there'll be something that you have to do "the new way", and you'll be far behind the curve.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

unix sources

hello, i'm looking for the sources of the old, original unices (v3 preferred). could someone point a link? (2 Replies)
Discussion started by: fdarkangel
2 Replies

2. Linux

Kernel sources

I"m installing my ATI card in FC4. I'm going off of instructions that i've found. The firs step says that i need my kernel sources which i've got then it says that i've gotta unpack them so i can make links to the file later. My kernel sources that i've got are .src.rpm I've installed them but... (1 Reply)
Discussion started by: byblyk
1 Replies

3. News, Links, Events and Announcements

Are the UnixWare 7.1.1 sources available?

So, I was browsing groklaw.net, and I was surprised to read that Pamela Jones was reading the copyright notices in the UnixWare 7.1.1 source code files... Groklaw - Santa Cruz Listed Novell as Owning the Copyrights in 1999 How can that be? Are the UnixWare 7.1.1 sources available to the... (1 Reply)
Discussion started by: pepinox
1 Replies

4. UNIX for Dummies Questions & Answers

Question about I/O sources

Hi all, What is the difference between these two comands? sed s/a/b/ <f1 >f2 sed s/a/b/ f1 >f2 Best, santiagorf (3 Replies)
Discussion started by: santiagorf
3 Replies

5. Red Hat

Restart of services if port no is changed in /etc/services in RHEL

I had a doubt if any services need to be restarted if port no in /etc/services in an RHEL setup is changed. For eg, the port no of 443 for SSL may need to be changed. I hope my query is clear whether any services need to be restarted if port no in /etc/services is changed. Please revert with... (10 Replies)
Discussion started by: RHCE
10 Replies

6. Shell Programming and Scripting

Script to Start services based on dependent services on other AIX machine

Hi, I just started working on a script. After my research, i found a command which can help me: AIM: To build a script which starts the services (Services 1) on server 1 automatically whenever its down. And it has a dependency on other service (Service 2) on Server 2. So my script has to... (4 Replies)
Discussion started by: draghun9
4 Replies

7. SuSE

How to configure sntp client with multiple time sources?

Hi, What is the syntax to configure sntp client to have multiple time sources? I tried to use the below syntax, but when the src1 is not reachable, the sntp does not even try to sync to src2: # /usr/sbin/sntp -P no -r src1 src2 sntp: receive timed out after 3 seconds sntp: receive timed... (0 Replies)
Discussion started by: Juha
0 Replies

8. Programming

Can anyone provide some sources about bank IT

I am working in IT company working for banks.I find hardly to get technology about bank IT on the internet.Consider banks all using Unix, I think I can get some help here. Recommend some sits or books about bank IT will be very helpful!! (0 Replies)
Discussion started by: hhdzhu
0 Replies

9. Red Hat

Firewalld - source IP not working

New to firewalld, and having an issue trying to emulate my old iptable ruleset. Server has one network interface, which I usually only allow SSH in from certain IPs, I know I can do this with rich rules but have read that this is sub-optimal. So, I created a new zone, ABCinternal, added a... (8 Replies)
Discussion started by: fishface
8 Replies

LEARN ABOUT DEBIAN

x2goclient

x2goclient(1)							 X2Go Client (Qt4)						     x2goclient(1)

NAME

       x2goclient - Client application to launch server-side X2Go sessions.

SYNOPSIS

       x2goclient  <options>

DESCRIPTION

       x2goclient is a GUI application for launching server-side X2Go sessions.

OPTIONS

       x2goclient has the following options:

       --help-pack
	      Show available pack methods and exit.

       --no-menu
	      Hide menu-/toolbar (default: false).

       --maximize
	      Start client maximized (default: false).

       --hide Hide client (start hidden, default: false).

       --client-ssh-port
	      Local ssh port (for filesystem export, default: 22).

       --user Pre-selection of user at client startup (LDAP mode).

PROFILING SESSIONS GLOBALLY

       You can pre-profile sessions globally using the following options. They will override the options in the session profiles.

       --command
	      Default command for session startup.

       --sessionid
	      Pre-selection of session ID at client startup.

       --ssh-port
	      Use this TCP/IP port for connection (default: 22).

       --link Set default link type (modem,isdn,adsl,wan or lan, default: adsl).

       --pack Set default pack method (default: '16m-jpeg').

       --quality
	      Set default image quality(0-9, default: 9).

       --set-kbd
	      Overwrite current keyboard settings, no override by default.

       --kbd-layout
	      Set keyboard layout (default: 'de').

       --kbd-type
	      Set keyboard type (default: pc105/de).

       --fullscreen
	      Start session in fullscreen mode.

       --width
	      Start session with this width (default: 800).

       --sound
	      Activate sound for session, not enabled by default.

       --sound-system
	      Which soundsystem to use: arts, esd, pulse (default: arts).

THIN CLIENT OPTIONS

       The following command line options are primarily interesting if x2goclient is used as a login manager on X2Go thin clients.

       --session=<session-profile-name>
	      Pre-selection of session at client startup.

       --no-session-edit
	      Disable session editing.

       --pgp-card
	      Use openPGP Card authentication (default: false).

       --external-login=<smartcard-logins>
	      Authenticate via SMART card, path to login notification file.

       --add-to-known-hosts
	      Add DSA/RSA host key fingerprint to .ssh/known_hosts in case of "authenticity of server can't be established".

       --read-exports-from
	      Specifies a directory where some external mechanism (e.g. script) can notify x2goclient on new block devices (CD/DVDs, USB sticks,
	      etc.).

LDAP OPTIONS

       In case you want to provide x2goclient session profiles from LDAP use the following options:

       --ldap Start with LDAP support (disabled by default).

       --basedn
	      Base DN to search in LDAP.

       --ldap-server
	      LDAP Server hostname.

       --ldap-port
	      LDAP Server portnumber (default: 389).

       --ldap-server1
	      Failover LDAP Server hostname.

       --ldap-port1
	      Failover LDAP Server portnumber (default: 389).

       --ldap-server2
	      Failover LDAP Server hostname.

AUTHOR

       This manual has been written by Mike Gabriel <mike.gabriel@das-netzwerkteam.de> for the X2Go project (http://www.x2go.org).

Version 3.99.1.x						     Feb 2012							     x2goclient(1)
All times are GMT -4. The time now is 08:27 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy