- Lab
- A Cloud Guru
Protecting Your System via `firewalld` in SUSE Linux Enterprise
In this hands-on lab, we will work with firewalld via YaST to enable the firewall as well as allow some ports. This is a fundamental process for any administrator and something that should be considered a basic task.
Path Info
Table of Contents
-
Challenge
Verify the Status of the Firewall on the Affected System
-
Check iptables:
sudo iptables -S -
Verify the rules are blank.
-
-
Challenge
Use YaST to Enable the Firewall, Move the Interface, and Allow the Appropriate Services
-
Open YaST:
sudo yast -
Under Security and Users > Firewall > Start-Up, set the current status to be start, and after reboot to start.
-
Go to Interfaces, and move the eth0 interface to the public zone.
-
Configure the public zone to add HTTP, and confirm that at least HTTP and SSH are allowed
-
Save the configuration and exit YaST.
-
-
Challenge
Verify That the Firewall Is Set Correctly
-
Check iptables:
sudo iptables -S -
Near the end of the listing, you should see the rules for:
-A IN_public_allow -p tcp -m tcp --dport 22 -m conntrack --ctstate NEW -j ACCEPT -A IN_public_allow -p tcp -m tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
-
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
