On 25/10/14 1:42 AM, Always Learning wrote:> Being a fan of IPtables and dreading the eventual transition to Centos
> 7, I wondered if in C7's firewalld an interface can be assigned to a
> single zone or to multiple zones such as 'private' and
'trusted'.
You can still use iptables with Centos7, if you want... (AFAIK both
firewalld & iptables use the same kernel functions)
To stop and disable firewalld
systemctl stop firewalld
systemctl mask firewalld
TO install iptables..
yum install iptables-services
Enable and start iptables
systemctl enable iptables
systemctl start iptables
for IPV6
systemctl enable ip6tables
>
> For example interface em1 having both trusted and public zones assigned
> to it. If multiple zones per interface are permitted presumably one can
> segregate traffic by IP range ?
>
>