On 2020-06-16 07:24, Kenneth Porter
wrote:
--On Tuesday,
June 16, 2020 8:17 AM +0800 Ed Greshko
<ed.greshko@greshko.com> wrote:
For RHEL/CentOS, I start by listing the
back end rules.
What would be the command to list those?
This looks like a good starting point:
<https://wiki.nftables.org/wiki-nftables/index.php/Quick_reference-nftables_in_10_minutes>
The other thing I found odd is that I did
firewall-cmd --set-log-denied=all
And saw no journal entries showing the reject. I used wireshark.
and I do see.
129.168.2.116----->192.168.122.152 Transmission Control Protocol,
Src Port: 44870, Dst Port: 22, Seq: 0, Len: 0
and immediately after
192.168.2.127----->192.168.2.116 Internet Control Message
Protocol (Port unreachable)