centOS 7 firewallD remove direct rule

After upgrading the system from 6.5 to 7, I started learning implementing dynamic firewall, however, I made a mistake to add the following rule

firewall-cmd –permanent –direct –add-rule ipv4 filter OUTPUT 1 -j
DROP

which cause the machine drop all the output to outside,

I tried to use

firewall-cmd –permanent –direct –remove-rule ipv4 filter OUTPUT 1 -j
DROP

to welcome everyone back.

However, after

firewall-cmd –reload

and

firewall-cmd –direct –get-all-rules

, I find this rule come back again automatically .

I even tried

firewall-cmd –complete-reload

but no effect.

What can I do now?

Related:


Leave a Reply