Hello,
I use CentOS and just changed my firewalld settings to use drop zone and allow incoming traffic only from some IP ranges.
I think my setup is not correct as I can still access my server from anywhere.
What did I wrong?
My setup:
Code:
firewall-cmd --get-active-zones drop
interfaces: enp1s0
Code:
firewall-cmd --state
running
Code:
firewall-cmd --zone=drop --list-all
drop (default, active)
interfaces: enp1s0
sources:
services:
ports: 8080/tcp 80/tcp 8888/tcp 22/tcp
masquerade: no
forward-ports:
icmp-blocks:
rich rules:
rule family="ipv4" source address="180.76.0.0/16" accept
rule family="ipv4" source address="46.107.0.0/16" accept
rule family="ipv4" source address="188.6.0.0/16" accept
rule family="ipv4" source address="178.48.0.0/16" accept
rule family="ipv4" source address="84.0.0.0/16" accept
rule family="ipv4" source address="84.2.0.0/16" accept