Hi @RoyRubio,
I don’t personally use CentOS day to day, it has been a while… though I do use RHEL. If I recall correctly CentOS 7 moved to using Firewalld as the default firewall service replacing* IPTables.
The first thing to do is verify which Firewall service is in use, and configure it accordingly according to the HAA documentation.
Here is some RHEL documentation that you may find helpful. (One or more of these may be in their walled garden and would need a support account to access, but pretty easy to do a quick Internet search for ‘firewalld’ and ‘iptables’ configuration in conjunction with CentOS)
Specific Details on HAA can be found in the following references along with the TCP Ports that need to be open in your Firewall.
The following is a sequence I implemented in my sandbox environment to disable IPTables and enable Firewalld while allowing specific ports through the default ‘public’ zone. I recommend that you review the documentation for any changes, and if unfamiliar research firewall usage to understand what changes are being made. (E.g. You may not want to use the ‘public’ zone designation, or open all the same ports depending on your architecture/network design.
Disable IPTables
-
Stop and Disable IPTables
systemctl stop iptables.service systemctl disable iptables.service
Enable and Configure Firewalld
-
Enable and Start Firewalld
systemctl enable firewalld.service systemctl start firewalld.service -
Set Internal as default zone
firewall-cmd --set-default-zone=public -
Add Ports to Firewall Rules
firewall-cmd --zone=public --permanent\ --add-port=3333-3339/tcp \ --add-port=36379-36380/tcp \ --add-port=8001/tcp \ --add-port=8443/tcp \ --add-port=8444/tcp \ --add-port=9080/tcp \ --add-port=9081/tcp \ --add-port=8070-8071/tcp \ --add-port=9443/tcp \ --add-port=10000-19999/tcp \ --add-port=20000-29999/tcp \ --add-port=53/tcp \ --add-port=5353/tcp -
Reload Firewalld Configuration
firewall-cmd --reload
ashokkarale
Anil_G
sharazkm32
afna
dylan.kelly
patent-atanaka
ta.shiraki
ramadhani.sheffi
rpa_jasindo
NNR