Lockdown unsecure port with firewall-cmd

Brill asked:

I have a RedHat 7 server where we allow a few ports but one of them is insecure I would like to use firewall-cmd to lock that port down to only allow 5 IPs to access it. Do I need to make a new zone for just that port?

My answer:


Not exactly: You make a new zone for the source IP addresses. Then you allow that port in the new zone.


View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.