mitsuo_makuda/linutil
1
0
Fork 0
mirror of https://github.com/ChrisTitusTech/linutil.git synced 2025-03-03 21:37:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create firewalld-baselines.sh

Browse Source
This commit is contained in:
Jaredy899 2025-02-16 18:33:29 -05:00 committed by GitHub
parent e83501f9d7
commit fa23349abf
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 28 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
core/tabs/security/firewalld-baselines.sh Normal file
View File

@ -0,0 +1,28 @@
#!/bin/sh -e
. ../common-script.sh
configureFirewallD() {
printf "%b\n" "${YELLOW}Configuring FirewallD with recommended rules${RC}"
printf "%b\n" "${YELLOW}Setting default zone to drop (FirewallD)${RC}"
"$ESCALATION_TOOL" firewall-cmd --set-default-zone=drop
printf "%b\n" "${YELLOW}Allowing SSH service (FirewallD)${RC}"
"$ESCALATION_TOOL" firewall-cmd --permanent --add-service=ssh
printf "%b\n" "${YELLOW}Allowing HTTP service (FirewallD)${RC}"
"$ESCALATION_TOOL" firewall-cmd --permanent --add-service=http
printf "%b\n" "${YELLOW}Allowing HTTPS service (FirewallD)${RC}"
"$ESCALATION_TOOL" firewall-cmd --permanent --add-service=https
printf "%b\n" "${YELLOW}Reloading FirewallD configuration${RC}"
"$ESCALATION_TOOL" firewall-cmd --reload
printf "%b\n" "${GREEN}Enabled FirewallD with Baselines!${RC}"
}
checkEnv
checkEscalationTool
configureFirewallD