Advanced Custom Rules

Howdy All,

I want to move all my firewall rules to entries at “Advanced Custom Rules” instead of having lots of entries on the Firewall’s “Networks” Tab.

It appears that the command INPUT 0 is the same or equivalent as zone “Trusted” or “Local”
and I am guessing INPUT 1 & INPUT 2 & INPUT 3 correspond to the other zones “Internet”, “Other”, “Local”

-I INPUT 0 -s XXX.XXX.XXX.XXX/32 -j ACCEPT
-I INPUT 1 -s XXX.XXX.XXX.XXX/32 -j ACCEPT
-I INPUT 2 -s XXX.XXX.XXX.XXX/32 -j ACCEPT
-I INPUT 3 -s XXX.XXX.XXX.XXX/32 -j ACCEPT

Does anyone know what INPUT # corresponds with what zone name?

(or alternatively)

Does anyone know where I can look at the config file for the entries that are done on the Firewall’s “Networks” Tab where I might answer the above question myself by interjecting some old school reasoning?

Perhaps

I figured out how to assign a zone to the input. No need to figure out the zone ID numbers, just use the zone name in all lower case

Here is the syntax that works;

-I INPUT --zone other -s xxx.xxx.xxx.xxx -j ACCEPT

I spoke to soon.

-I INPUT --zone other -s xxx.xxx.xxx.xxx -j ACCEPT

does not work.

I’m looking for an advanced firewall rule that is the same thing as assigning an IP address to a zone on the Firewall - Networks tab

in linux IP tables, I believe this would be the command;

firewall-cmd --zone=other --add-source=192.168.2.15

Im trying to figure out the advanced firewall rule that would be the equivalent.