質問編集履歴
1
`firewall-cmd --list-all-zone` の結果を追記
title
CHANGED
File without changes
|
body
CHANGED
@@ -37,4 +37,143 @@
|
|
37
37
|
dockerで開いたポートは、firewalldの設定は反映されないということなのでしょうか??
|
38
38
|
|
39
39
|
動作確認しているOSは、さくらのクラウドの `CentOS Linux release 7.3.1611 (Core)`です。
|
40
|
-
よろしくお願いいたします。
|
40
|
+
よろしくお願いいたします。
|
41
|
+
|
42
|
+
一応、`firewall-cmd --list-all-zone` の結果を以下に記載します。
|
43
|
+
|
44
|
+
```
|
45
|
+
[root@server]# firewall-cmd --list-all-zone
|
46
|
+
work
|
47
|
+
target: default
|
48
|
+
icmp-block-inversion: no
|
49
|
+
interfaces:
|
50
|
+
sources:
|
51
|
+
services: dhcpv6-client ssh
|
52
|
+
ports:
|
53
|
+
protocols:
|
54
|
+
masquerade: no
|
55
|
+
forward-ports:
|
56
|
+
sourceports:
|
57
|
+
icmp-blocks:
|
58
|
+
rich rules:
|
59
|
+
|
60
|
+
|
61
|
+
drop
|
62
|
+
target: DROP
|
63
|
+
icmp-block-inversion: no
|
64
|
+
interfaces:
|
65
|
+
sources:
|
66
|
+
services:
|
67
|
+
ports:
|
68
|
+
protocols:
|
69
|
+
masquerade: no
|
70
|
+
forward-ports:
|
71
|
+
sourceports:
|
72
|
+
icmp-blocks:
|
73
|
+
rich rules:
|
74
|
+
|
75
|
+
|
76
|
+
internal
|
77
|
+
target: default
|
78
|
+
icmp-block-inversion: no
|
79
|
+
interfaces:
|
80
|
+
sources:
|
81
|
+
services: dhcpv6-client http https mdns samba-client ssh
|
82
|
+
ports:
|
83
|
+
protocols:
|
84
|
+
masquerade: no
|
85
|
+
forward-ports:
|
86
|
+
sourceports:
|
87
|
+
icmp-blocks:
|
88
|
+
rich rules:
|
89
|
+
|
90
|
+
|
91
|
+
external
|
92
|
+
target: default
|
93
|
+
icmp-block-inversion: no
|
94
|
+
interfaces:
|
95
|
+
sources:
|
96
|
+
services: ssh
|
97
|
+
ports:
|
98
|
+
protocols:
|
99
|
+
masquerade: yes
|
100
|
+
forward-ports:
|
101
|
+
sourceports:
|
102
|
+
icmp-blocks:
|
103
|
+
rich rules:
|
104
|
+
|
105
|
+
|
106
|
+
trusted
|
107
|
+
target: ACCEPT
|
108
|
+
icmp-block-inversion: no
|
109
|
+
interfaces:
|
110
|
+
sources:
|
111
|
+
services:
|
112
|
+
ports:
|
113
|
+
protocols:
|
114
|
+
masquerade: no
|
115
|
+
forward-ports:
|
116
|
+
sourceports:
|
117
|
+
icmp-blocks:
|
118
|
+
rich rules:
|
119
|
+
|
120
|
+
|
121
|
+
home
|
122
|
+
target: default
|
123
|
+
icmp-block-inversion: no
|
124
|
+
interfaces:
|
125
|
+
sources:
|
126
|
+
services: dhcpv6-client mdns samba-client ssh
|
127
|
+
ports:
|
128
|
+
protocols:
|
129
|
+
masquerade: no
|
130
|
+
forward-ports:
|
131
|
+
sourceports:
|
132
|
+
icmp-blocks:
|
133
|
+
rich rules:
|
134
|
+
|
135
|
+
|
136
|
+
dmz
|
137
|
+
target: default
|
138
|
+
icmp-block-inversion: no
|
139
|
+
interfaces:
|
140
|
+
sources:
|
141
|
+
services: ssh
|
142
|
+
ports:
|
143
|
+
protocols:
|
144
|
+
masquerade: no
|
145
|
+
forward-ports:
|
146
|
+
sourceports:
|
147
|
+
icmp-blocks:
|
148
|
+
rich rules:
|
149
|
+
|
150
|
+
|
151
|
+
public (active)
|
152
|
+
target: default
|
153
|
+
icmp-block-inversion: no
|
154
|
+
interfaces: eth0
|
155
|
+
sources:
|
156
|
+
services: dhcpv6-client http https ssh
|
157
|
+
ports:
|
158
|
+
protocols:
|
159
|
+
masquerade: no
|
160
|
+
forward-ports:
|
161
|
+
sourceports:
|
162
|
+
icmp-blocks:
|
163
|
+
rich rules:
|
164
|
+
|
165
|
+
|
166
|
+
block
|
167
|
+
target: %%REJECT%%
|
168
|
+
icmp-block-inversion: no
|
169
|
+
interfaces:
|
170
|
+
sources:
|
171
|
+
services:
|
172
|
+
ports:
|
173
|
+
protocols:
|
174
|
+
masquerade: no
|
175
|
+
forward-ports:
|
176
|
+
sourceports:
|
177
|
+
icmp-blocks:
|
178
|
+
rich rules:
|
179
|
+
```
|