Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • disable - This disables the FreePBX Firewall module, stops the service, and immediately flushes all iptables rules. Disable differs from stop in that the module stays disabled after a reboot. Note there is no corresponding enable command, use start instead.

    Code Block
    languagetext
    titleExample
    # fwconsole firewall disable

     

  • stopThis temporarily stops the FreePBX Firewall until it is manually started or until the pbx is booted. All existing iptables rules are immediately flushed. 

    Code Block
    languagetext
    titleExample
    # fwconsole firewall stop

     

  • start - This starts the FreePBX Firewall, enabling first if necessary

    Code Block
    languagetext
    titleExample
    # fwconsole firewall start
    Enabling Firewall.
    
    Broadcast message from <fqdn redacted> (Wed Apr 13 11:02:22 2016):
    Firewall service now starting.
  • trust - Adds a host to the list of trusted networks shown on the zones, networks page

    Code Block
    languagetext
    titleExamples
    # fwconsole firewall trust www.google.com
    Attempting to add www.google.com to Trusted Zone
    Success. Entry added to Trusted Zone.
     
    # fwconsole firewall trust 192.168.0.1/24
    Attempting to add 192.168.0.1/24 to Trusted Zone
    Success. Entry added to Trusted Zone.

     

  • untrust - removes a host (if present) from the list of trusted networks shown on the zones, networks page

    Code Block
    languagetext
    titleExamples
    # fwconsole firewall untrust www.google.com
    Attempting to remove www.google.com from Trusted Zone
    Success. Entry removed from Trusted Zone.
    
    # fwconsole firewall untrust 192.168.0.1/24
    Attempting to remove 192.168.0.1/24 from Trusted Zone
    Success. Entry removed from Trusted Zone.
  • list - list all hosts for a specified zone, acceptable zones are external, other, internal, trusted, and blacklist

    Code Block
    languagetext
    titleExamples
    [root@lgaetzdev2 ~]# fwconsole firewall list blacklist
    All blacklisted entries.
            8.8.8.8
            google.com: (Resolves to 216.58.219.206)
     
    [root@lgaetzdev2 ~]# fwconsole firewall list trusted
    All entries in zone 'trusted':
            192.168.0.0/16
            172.16.0.0/12
            10.0.0.0/8
            fc00::/8
            fd00::/8
            127.0.0.1/32
  • add - add host(s) to specified zone, acceptable zones are external, other, internal, trusted, and blacklistseparate multiple hosts by spaces

    Code Block
    languagetext
    titleExamples
    [root@lgaetzdev2 ~]# fwconsole firewall add blacklist example.com 192.168.15.0/24
    Attempting to add 'example.com' to Blacklist ... Success!
    Attempting to add '192.168.15.0/24' to Blacklist ... Success!
    
    [root@lgaetzdev2 ~]# fwconsole firewall add other 192.168.75.0/24
    Attempting to add '192.168.75.0/24' to Zone 'other' ... Success!
  • del - delete host(s) from the specified zone, acceptable zones are external, other, internal, trusted, and blacklist, separate multiple hosts by spaces

    Code Block
    languagetext
    titleExamples
    [root@lgaetzdev2 ~]# fwconsole firewall list other
    All entries in zone 'other':
            192.168.75.0/24
    
    [root@lgaetzdev2 ~]# fwconsole firewall del other 192.168.75.0/24
    Attempting to remove 192.168.75.0/24 from 'other' Zone ... Success!
    
    [root@lgaetzdev2 ~]# fwconsole firewall list other
    All entries in zone 'other':
    
    

...