Manage Network Security (Firewall) in RHEL - RHCSA (RH134).pdf

support8872 457 views 24 slides Sep 28, 2024
Slide 1
Slide 1 of 24
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21
Slide 22
22
Slide 23
23
Slide 24
24

About This Presentation

Slides on how to manage network security (Firewall) - Part of RHCSA (RH134) syllabus

Size: 713.49 KB
Language: en
Added: Sep 28, 2024
Slides: 24 pages

Slide Content

Manage Network Security
(Firewall)

Firewall

●Protects machines by filtering
unwanted external traffic

●Allows users to control
incoming network traffic by
setting rules that either block or
permit traffic based on defined
criteria
Source: Firewall in Linux. Firewall — A firewall is a network… | by P3rwez | Aug, 2024 | Medium

Types of firewall in IT
1.Hardware firewall:
Physical device that filters network traffic between external networks and
internal systems
Source: Types of Firewalls Defined and Explained - Palo Alto Networks

2. Software Firewall:
Program on individual devices, controls incoming and outgoing network
traffic
Source: Types of Firewalls Defined and Explained - Palo Alto Networks

Types of firewall in IT
●Hardware firewall:
physical device that filters network traffic between external
networks and internal systems

●Software Firewall:
program installed on individual devices that controls incoming
and outgoing network traffic

Managing network security

Network security in RHEL is managed by firewalld

Firewalld:
●Dynamic firewall management tool

●Provides commands to manage firewall rules

●Includes predefined service rules that are easy to enable/disable (e.g.,
NFS, NTP, HTTPD).

Core components of firewalld
Table: Structures that organize chains for packet filtering and
NAT operations
Chains: Ordered sets of rules that control the flow of network
traffic.
Rules: Specific instructions that define how to handle
matching network packets
Targets: Actions applied to packets that match a rule (e.g.,
ACCEPT, REJECT).

Proceed with iptables or firewalld:


Check the status of iptables
●Command: systemctl status iptables


Note: verify the status of iptables by using ‘systemctl’ command, if
iptables are present then make sure iptables are stopped disabled and
mask

Install firewalld
●Command: yum install firewalld

Enable firewalld
●Command: systemctl enable firewalld
Start firewalld
●Command: systemctl start firewalld

Check the rule of firewalld
●Command: firewall-cmd --list-all
List all the available services of firewall
●Command: firewall-cmd --get-services

Add the http service permanently, to make it permanent use the
‘--permanent’ flag otherwise on reloading the added service will be lost
●Command: firewall-cmd --add-service=http --permanent

Remove the http service and confirm the changes using “firewall-cmd --list-all”
●Command: firewall-cmd --remove-service=http

List available zones
●Command: firewall-cmd --get-zones
To get the active zone
●Command: firewall-cmd --get-active-zones

Listing all the firewall rules for ‘internal’ zone
●Command: firewall-cmd --zone=internal --list-all

Creating a custom service in firewall
Copy the contents of xml file in your file
●Command: cp <existing-xml-file> <new-xml-file>
Edit the xml file and change the port number, description and service name
●Command: vi <path-to-new-xml-file>

Restart & check the services available and notice the service which is being
added is listed
●Command: systemctl restart firewalld && firewall-cmd --get-services

Add the 'tcp' port '1234' to the inbound firewall then confirm the changes using
‘--list-all’ command
●Command: firewall-cmd --add-port=1234/tcp
Remove the added port
●Command: firewall-cmd --remove-port=1234/tcp

Advanced firewall rules for traffic
control
Block the incoming traffic from a particular ip address by adding rich rule
●Command: firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -s
<ip-address> -j REJECT

Remove the rich rule
●Command: firewall-cmd --direct --remove-rule ipv4 filter INPUT 0 -s
<ip-address> -j REJECT

Block the ICMP 'echo-request' messages to block the outgoing ICMP traffic
●Command: firewall-cmd --permanent --direct --add-rule ipv4 filter
OUTPUT 0 -p icmp --icmp-type echo-request -j DROP &&
firewall-cmd --reload
Note: Make the changes permanent and reload the firewall to make sure the changes
are done

Install the bind-utils package
●Command: yum install bind-utils

Find the ip address of any website
●Command: dig <website-name>

Block the outgoing traffic to that site
●Command: firewall-cmd --direct --add-rule ipv4 filter OUTPUT
0 -d <ip-address> -j DROP
Fetch the content of the website using curl command
●Command: curl <ip-address>

Unblock the outgoing traffic to the ip address
●Command: firewall-cmd --direct --remove-rule ipv4 filter OUTPUT
0 -d <ip-address> -j DROP
Tags
red hat certified system admin red hat red hat linux rhcsa rhel rh134 linux network security firewall firewall rules
Categories
Design
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 457
  • Slides 24
  • Age 430 days
Related Slideshows
MGV Residential Design projects for different clients, including a New Mexico Adobe project-1-.pdf 1
MGV Residential Design projects for different clients, including a New Mexico Adobe project-1-.pdf
mannyvesa
26 views
EUNITED_Advocacy and Public Engagement through Visual Media 16
EUNITED_Advocacy and Public Engagement through Visual Media
GeorgeDiamandis11
31 views
DESIGN THINKINGGG PPT 2 TOPIC IDEATION.pptx 31
DESIGN THINKINGGG PPT 2 TOPIC IDEATION.pptx
HibaZaidi2
24 views
DESIGN THINKING CHAPTER 1 PPTT PPT 1.pptx 36
DESIGN THINKING CHAPTER 1 PPTT PPT 1.pptx
HibaZaidi2
28 views
Hinduism and Its History - PowerPoint Slides.pptx 112
Hinduism and Its History - PowerPoint Slides.pptx
ConorMcCormack10
24 views
Service Attributes of Manufactured Parts.pptx 20
Service Attributes of Manufactured Parts.pptx
MustafaEnesKrmac
24 views
View More in This Category