On Thu, May 06, 2021 at 03:58:44PM -0000, Jason Long wrote:
Thanks. I have other questions:
1- How can I remove multiple ports?
v0.9.0 added support for breaking and coalescing of port ranges.
If you're using an earlier version then maybe you're hitting that issue. You have to use the exact port range shown it the config. Otherwise it won't work.
2- When I want to remove some ports, then it shows me "Warning: NOT_ENABLED:" message!
# firewall-cmd --list-all FedoraServer (active) target: default icmp-block-inversion: no interfaces: enp0s17 enp0s8 sources: services: cockpit dhcp dhcpv6-client high-availability http https ssh ports: 53/udp 135/tcp 137-138/udp 139/tcp 389/tcp 389/udp 445/tcp 464/tcp 464/udp 636/tcp 1024-5000/tcp 3268-3269/tcp protocols: masquerade: no forward-ports: source-ports: icmp-blocks:
# firewall-cmd --remove-port=389/tcp --permanent Warning: NOT_ENABLED: 389:tcp success
You show the _runtime_ config above, but this command manipulates the _permanent_ config. Maybe 389/tcp has not been added to the permanent config.