This topic applies to Logger Appliances only.
Your Logger Appliance includes a script that you can use to configure the firewall. This script looks at your current Logger configuration and decides what ports to keep open. Alternatively, you can configure the firewall on your Logger as you would on any server, by white-listing the appropriate ports in firewalld (for CentOS and RHEL 7.X).
When called without arguments, the /usr/sbin/arcfirewall script displays the ports that it will keep open, but takes no action to alter the firewall configuration. To alter firewall configuration, use the --set option.
To preview the list of ports the script would open:
Run the following command:
/usr/sbin/arcfirewall.
The script displays the ports that it would open if run with the --set option.
To configure the firewall:
Run the following command:
[root@myserver ~]# /usr/sbin/arcfirewall --set.
The script configures the firewall leaving only the necessary ports open.
To display the firewall current status and configuration:
Run the following command to list all active firewall rules:
iptables -S
Run the following command:
firewall-cmd --list-all-zones
To check the firewall current running status, use the command:
systemctl status firewalld