Source

About

This page is about the source definition 1) of traffic in a firewalld zone.

The source value can be seen in the zone options

Is an optional empty-element tag and can be used several times.

Usage

It's used to bind to a zone:

Entry

A source entry has exactly one of these attributes:

  • address=“address[/mask]” - The source is either an IP address or a network IP address with a mask for IPv4 or IPv6. The network family (IPv4/IPv6) will be automatically discovered. For IPv4, the mask can be a network mask or a plain number. For IPv6 the mask is a plain number. The use of host names is not supported.
  • mac=“MAC” - The source is a MAC address. It must be of the form XX:XX:XX:XX:XX:XX.
  • ipset=“ipset” The source is an ipset.

From the command line: 

--add-source=ipset:ipsetName
1)
https://firewalld.org/documentation/zone/options.html#source




Discover More
Firewalld

Cheatsheet on the usage of Firewalld
Firewalld - Zone

A zone is a grouping of rule configurations known as zone option. A firewall zone is defined for: a connection, an interface or source address binding (range of source addresses) This is a one-to-many...
What are Rich Rules or Rules in Firewalld?

Rich rule is a line of text that: begins with rule defines a list of options and terminates by an action: accept reject drop mark If a packet matches the options of the rich rule, the...
What is and how to create an IpSet? (Firewalld/Iptables)

An IPset is a set of IP or MAC addresses grouped together under a name. You can use an IPset in every source with the ipset: prefix. reload firewalld A IPset called white-list List of mac...



Share this page:
Follow us:
Task Runner