Ping a Specific Port

Question

Nicolas Guérinet

Asked: 2016-02-15 09:16:51 +0800 CST2016-02-15 09:16:51 +0800 CST 2016-02-15 09:16:51 +0800 CST

Can't firewalld replace iptables?

772

I used Iptables on Centos 6.5 and tried to translate iptables rules into firewalld rules on centos 7. However, with firewalld, i have discovered i am unable to

drop packets in invalid states
create a set of rules to protect from portscan
create a rule against SYN attacks (meaning looking for packets with syn flags)
Use hash limit to limit number of connections per second per IP

Am i right to think that firewalld has way less possible features as compared to Iptables?

1 Answers

Voted

Bruce Malaudzi · Answer 1 · 2020-10-22T04:11:22+08:00

Bruce Malaudzi

2020-10-22T04:11:22+08:002020-10-22T04:11:22+08:00

FirewallD, mostly used by Red Hat variants, is a front end to iptables. FirewallD and Ubuntu's UFW are user friendly tools that interact with iptables in the background, which in turn interact with netfilter. FirewallD cannot provide all the whistles and bells that iptables does. Adding on to your statement, firewalld cannot filter outgoing traffic, but iptatbles can (by default).

0

Can't firewalld replace iptables?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?