CentOS - Oct 2014 - C7 : Firewalld

Being a fan of IPtables and dreading the eventual transition to Centos
7, I wondered if in C7's firewalld an interface can be assigned to a
single zone or to multiple zones such as 'private' and
'trusted'.

For example interface em1 having both trusted and public zones assigned
to it. If multiple zones per interface are permitted presumably one can
segregate traffic by IP range ?


-- 
Thank you.

Paul.
England, EU.

On 25/10/14 1:42 AM, Always Learning wrote:
> Being a fan of IPtables and dreading the eventual transition to Centos
> 7, I wondered if in C7's firewalld an interface can be assigned to a
> single zone or to multiple zones such as 'private' and
'trusted'.
You can still use iptables with Centos7, if you want... (AFAIK both 
firewalld & iptables use the same kernel functions)

To stop and disable firewalld

systemctl stop firewalld
systemctl mask firewalld

TO install iptables..

yum install iptables-services

Enable and start iptables

systemctl enable iptables
systemctl start iptables

for IPV6
systemctl enable ip6tables
>
> For example interface em1 having both trusted and public zones assigned
> to it. If multiple zones per interface are permitted presumably one can
> segregate traffic by IP range ?
>
>