Edit firewall rule

zonzon · December 20, 2020, 4:49pm

Hi guys, how I can edit firewall rule, I want change from 0.0.0.0/0 IP to my own IP for 8090 port.

If I trying add new rule for the same port, I have notice that this is double rule and cyberpanel cant create the new rule.

zonzon · January 25, 2021, 9:33pm

any solution?

zonzon · February 14, 2021, 3:37pm

bump

ianw5555 · February 15, 2021, 9:35am

Install CSF it is a better firewall

zonzon · March 1, 2021, 6:47pm

Thank you for your solution, but I don’t want better, I just looking how change IP with default firewall.

kooler · July 10, 2022, 11:14am

I also want to know where iptables is loading its rules from in presence of CSF?

kooler · July 10, 2022, 4:43pm

Ok I have found the solution for how to block certain port on certain ip.

Things to note:

csf works by allowing one ip and/or port while blocking all others.
The fix was rather simple but i almost lost my server in process while trying to manually adjust iptables. It just wouldn’t work.
csf disables firewalld & modifies iptables rules by it self.

To allow certain port on one or range of ip’s do the following:

sudo nano /etc/csf/csf.allow

Add entry like below to the above file. Format: tcp/udp|in/out|s/d=port|s/d=ip.
Example: we want to block port 22 on one of the ip 192.168.0.5. s/d equals source/destination (use wisely).

tcp|in|d=22|d=192.168.0.5

Edit /etc/csf/csf.conf or if you have access to csf panel edit it there. Remove port under tcp_in or tcp_out

nano /etc/csf/csf.conf
find tcp_in port 22 and remove it