Whitelist Blacklist di Centos 7

 1. Cek Source

firewall-cmd --permanent --zone=public --list-sources

2. Tambahkan IP Whitelist

firewall-cmd --permanent --zone=public --add-source=192.168.100.0/24
firewall-cmd --permanent --zone=public --add-source=192.168.222.123/32

3. Tambahkan port yang mau dibuka

firewall-cmd --permanent --zone=public --add-port=1-22/tcp
firewall-cmd --permanent --zone=public --add-port=1-22/udp

4. Reload Service dan cek hasilnya

firewall-cmd --reload

firewall-cmd --zone=public --list-all

5. Remove IP whitelist

firewall-cmd --permanent --zone=public --remove-source=192.168.100.0/24

firewall-cmd --reload

firewall-cmd --zone=public --list-all

Cara Blacklist IP dengan Firewalld

1. Cek source

firewall-cmd --zone=public --list-all

2. Tambahkan IP untuk di blok

firewall-cmd --add-rich-rule='rule family=ipv4 source address=192.168.3.4/24 reject' --permanent

3. Reload service

firewall-cmd --reload

4. Cek source

firewall-cmd --zone=public --list-all

5. Remove IP yang di block

firewall-cmd --remove-rich-rule='rule family=ipv4 source address=192.168.3.4/24 reject' --permanent

firewall-cmd --reload

6. Cek kembali list nya

firewall-cmd --zone=public --list-all

Layak blokir:

rule family="ipv4" source address="43.155.65.157" reject
rule family="ipv4" source address="138.197.149.97" reject
rule family="ipv4" source address="95.120.244.105" reject
rule family="ipv4" source address="1.117.155.198" reject
rule family="ipv4" source address="106.13.19.75" reject
rule family="ipv4" source address="61.155.2.142" reject
rule family="ipv4" source address="189.139.66.71" reject
rule family="ipv4" source address="180.250.248.170" reject
rule family="ipv4" source address="45.88.137.253" reject
rule family="ipv4" source address="222.0.0.0/8" reject
rule family="ipv4" source address="221.0.0.0/8" reject
rule family="ipv4" source address="49.0.0.0/8" reject
rule family="ipv4" source address="36.133.163.65" reject