Skip to main content

Using ‘firewalld’ for Advanced Packet Filtering

Hands-On Lab


Photo of Terrence Cox

Terrence Cox

Senior Vice President of Content





Managing a local firewall is something pretty much every Linux admin is going to have to do during their career. Many operating systems have adopted firewalld as the local firewall management system moving forward. Setting this up can lead to a more secure server and increase security through your environment.

What are Hands-On Labs?

Hands-On Labs are scenario-based learning environments where learners can practice without consequences. Don't compromise a system or waste money on expensive downloads. Practice real-world skills without the real-world risk, no assembly required.

Our security team has decided that one of the servers in the datacenter may have been compromised. They'd like you to lock down SSH access from the CLIENT to the SERVER while still allowing the SERVER to serve web pages and allow SSH from anywhere else.

Apache is already installed and configured. You need to use firewall-cmd to set the local firewall up to deny that specific access.

Once that's complete the Security team has decided they do want to allow the ping command to work from the CLIENT to the SERVER. Once complete you can turn the CLIENT and SERVER back over to the Security team to complete their investigation.