tldr/pages/linux/firewall-cmd.md

# firewall-cmd

> The firewalld command-line client.
> More information: <https://firewalld.org/documentation/man-pages/firewall-cmd>.

- View the available firewall zones:

`firewall-cmd --get-active-zones`

- View the rules which are currently applied:

`firewall-cmd --list-all`

- Permanently move the interface into the block zone, effectively blocking all communication:

`firewall-cmd --permanent --zone={{block}} --change-interface={{enp1s0}}`

- Permanently open the port for a service in the specified zone (like port 443 when in the `public` zone):

`firewall-cmd --permanent --zone={{public}} --add-service={{https}}`

- Permanently close the port for a service in the specified zone (like port 80 when in the `public` zone):

`firewall-cmd --permanent --zone={{public}} --remove-service={{http}}`

- Permanently open two arbitrary ports in the specified zone:

`firewall-cmd --permanent --zone={{public}} --add-port={{25565/tcp}} --add-port={{19132/udp}}`

- Reload firewalld to force rule changes to take effect:

`firewall-cmd --reload`
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00			`# firewall-cmd`

*: fix typos reported by Hunspell (#5848) Co-authored-by: marchersimon <50295997+marchersimon@users.noreply.github.com> Co-authored-by: Seth Falco <seth@falco.fun> Co-authored-by: Patrice Denis <patricedenis@users.noreply.github.com> 2021-05-20 21:13:41 +01:00			`> The firewalld command-line client.`
linux/[a-g]: add more information link (#6076) 2021-07-09 15:45:55 +01:00			`> More information: <https://firewalld.org/documentation/man-pages/firewall-cmd>.`
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
Formatted all pages according to guidelines. 2016-01-07 17:31:27 +00:00			`- View the available firewall zones:`
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
			`firewall-cmd --get-active-zones`

Formatted all pages according to guidelines. 2016-01-07 17:31:27 +00:00			`- View the rules which are currently applied:`
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
			`firewall-cmd --list-all`

firewall-cmd: add zone change and arbitrary ports (#3815) 2020-03-03 17:21:21 +00:00			`- Permanently move the interface into the block zone, effectively blocking all communication:`

			`firewall-cmd --permanent --zone={{block}} --change-interface={{enp1s0}}`

multiple pages: format technical tokens (#5119) Co-authored-by: bl-ue <54780737+bl-ue@users.noreply.github.com> Co-authored-by: Starbeamrainbowlabs <sbrl@starbeamrainbowlabs.com> 2021-01-31 17:05:18 +00:00			- Permanently open the port for a service in the specified zone (like port 443 when in the `public` zone):
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
			`firewall-cmd --permanent --zone={{public}} --add-service={{https}}`

multiple pages: format technical tokens (#5119) Co-authored-by: bl-ue <54780737+bl-ue@users.noreply.github.com> Co-authored-by: Starbeamrainbowlabs <sbrl@starbeamrainbowlabs.com> 2021-01-31 17:05:18 +00:00			- Permanently close the port for a service in the specified zone (like port 80 when in the `public` zone):
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
			`firewall-cmd --permanent --zone={{public}} --remove-service={{http}}`

firewall-cmd: add zone change and arbitrary ports (#3815) 2020-03-03 17:21:21 +00:00			`- Permanently open two arbitrary ports in the specified zone:`

			`firewall-cmd --permanent --zone={{public}} --add-port={{25565/tcp}} --add-port={{19132/udp}}`

Formatted all pages according to guidelines. 2016-01-07 17:31:27 +00:00			`- Reload firewalld to force rule changes to take effect:`
Add page for firewall-cmd in linux 2015-01-12 15:45:34 +00:00
			`firewall-cmd --reload`