{"id":1719,"date":"2018-11-23T03:29:44","date_gmt":"2018-11-23T03:29:44","guid":{"rendered":"https:\/\/www.hostnic.id\/blog\/?p=1719"},"modified":"2018-11-23T03:29:44","modified_gmt":"2018-11-23T03:29:44","slug":"cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu","status":"publish","type":"post","link":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/","title":{"rendered":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu"},"content":{"rendered":"<div class=\"entry-inner\">\n<p>Firewalld (firewall daemon) merupakan alternatif untuk layanan\u00a0<strong>iptables<\/strong>, untuk mengelola firewall dengan dukungan jaringan. sangat mudah untuk di gunakan dan mengkonfigurasinya, dan ini dia managemenr default firewall di\u00a0<strong>RHEL\/CentOS<\/strong>, <strong>Fedora<\/strong>\u00a0dan beberapa OS Linux lainnya.\u00a0Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu.<\/p>\n<p>Pada artikel ini, kami akan mendiskusikan bagaimana untuk mengkonfigurasi system firewall dengan\u00a0<strong>firewalld<\/strong>\u00a0dan mengimplementasikan paket dasar di\u00a0<strong>CentOS\/RHEL 7<\/strong>\u00a0dan\u00a0<strong>Ubuntu<\/strong>.<\/p>\n<\/div>\n<p>&nbsp;<\/p>\n<p><strong>Baca Juga:\u00a0<a href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-mengaktifkan-gzip-compression-di-apache\/\">Cara Mengaktifkan Gzip Compression di Apache<\/a><\/strong><\/p>\n<p>&nbsp;<\/p>\n<div class=\"entry-inner\">\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_75 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Daftar Isi<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-69f31e2245028\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-69f31e2245028\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#Dasar_Firewalld\" >Dasar Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#Understanding_Important_Firewalld_Features\" >Understanding Important Firewalld Features<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Install_Firewalld_Package_in_Linux\" >How to Install Firewalld Package in Linux<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Manage_Firewalld_Service_in_Linux\" >How to Manage Firewalld Service in Linux<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Work_with_Firewall_Zones_in_Firewalld\" >How to Work with Firewall Zones in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Open_and_Block_Ports_in_Firewalld\" >How to Open and Block Ports in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Open_and_Block_Services_in_Firewalld\" >How to Open and Block Services in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Enable_and_Disable_IP_Masquerading_Using_Firewalld\" >How to Enable and Disable IP Masquerading Using Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Enable_and_Disable_IMCP_Message_in_Firewalld\" >How to Enable and Disable IMCP Message in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Use_Direct_Interface_to_Pass_Raw_iptables_Commands\" >How to Use Direct Interface to Pass Raw iptables Commands<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Use_Rich_Language_in_Firewalld\" >How to Use Rich Language in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Enable_and_Disable_Panic_Mode_in_Firewalld\" >How to Enable and Disable Panic Mode in Firewalld<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#How_to_Lockdown_Firewalld\" >How to Lockdown Firewalld<\/a><ul class='ez-toc-list-level-5' ><li class='ez-toc-heading-level-5'><ul class='ez-toc-list-level-5' ><li class='ez-toc-heading-level-5'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#Summary\" >Summary<\/a><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<h3><span class=\"ez-toc-section\" id=\"Dasar_Firewalld\"><\/span>Dasar Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>Firewalld<\/strong> terdiri dari tiga lapisan, yaitu:<\/p>\n<ul>\n<li><strong>core layer<\/strong>: bertanggung jawab untuk menangani konfigurasi dan bagian belakang berakhir (tercantum di bawah).<\/li>\n<li><strong>D-Bus interface<\/strong>: sarana utama untuk mengubah dan membuat konfigurasi firewall.<\/li>\n<li><strong>backends<\/strong>: untuk berinteraksi dengan netfilter (modul kernel asli yang digunakan untuk firewall). Termasuk iptables, ip6tables, ebtables, ipset, nft, linnftables, Network Manager dan modul.<\/li>\n<\/ul>\n<p>Ia mengatur aturan firewall dengan mengimplementasikan zona jaringan \/ firewall yang menentukan tingkat kepercayaan koneksi jaringan atau antarmuka. Fitur firewall yang didukung lainnya termasuk layanan, konfigurasi langsung (digunakan untuk langsung melewati sintaks iptables mentah), IPSets serta jenis ICMP.<\/p>\n<p>Dua jenis lingkungan konfigurasi didukung oleh firewalld:<\/p>\n<ul>\n<li>konfigurasi runtime yang hanya efektif sampai mesin telah di-reboot atau layanan firewall telah di-restart<\/li>\n<li>konfigurasi permanen yang disimpan dan bekerja dengan gigih.<\/li>\n<\/ul>\n<p>Alat baris perintah firewall-cmd digunakan untuk mengelola runtime dan konfigurasi permanen. Atau, Anda dapat menggunakan alat konfigurasi antarmuka grafis konfigurasi firewall-config (GUI) untuk berinteraksi dengan daemon.<\/p>\n<p>Selain itu, firewalld menawarkan antarmuka yang terdefinisi dengan baik untuk layanan atau aplikasi lokal lainnya untuk meminta perubahan pada aturan firewall secara langsung, jika mereka berjalan dengan hak akses root.<\/p>\n<p>File konfigurasi global untuk firewalld terletak di\u00a0<strong>\/etc\/firewalld\/firewalld.conf<\/strong> dan fitur firewall dikonfigurasi dalam format XML.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Understanding_Important_Firewalld_Features\"><\/span>Understanding Important Firewalld Features<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The central feature of firewalld is network\/firewall zones. Every other feature is bounded to a zone. A firewall zone describes the trust level for a connection, interface or source address binding.<\/p>\n<p>The default configuration comes with a number of predefined zones sorted according to the default trust level of the zones from untrusted to trusted: drop, block, public, external, dmz, work, home, internal and trusted. They are defined in files stored under the <strong>\/usr\/lib\/firewalld\/zones<\/strong> directory.<\/p>\n<p>You can configure or add your custom zones using the CLI client or simply create or copy a zone file in <strong>\/etc\/firewalld\/zones<\/strong> from existing files and edit it.<\/p>\n<p>Another important concept under firewalld is services. A service is defined using ports and protocols; these definitions represent a given network service such as a web server or remote access service. Services are defined in files stored under the <strong>\/usr\/lib\/firewalld\/services\/<\/strong> or <strong>\/etc\/firewalld\/services\/<\/strong> directory.<\/p>\n<p>If you know basic iptables\/ip6tables\/ebtables concepts, you can also use the direct interface (or configuration) to gain direct access to the firewall. But, for those without any iptables knowledge, you can employ the rich language for creating more complex firewall rules for IPv4 and IPv6.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Install_Firewalld_Package_in_Linux\"><\/span>How to Install Firewalld Package in Linux<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>On <strong>CentOS 7<\/strong>, the <strong>firewalld<\/strong> package comes pre-installed and you can verify using following command.<\/p>\n<pre>$ rpm -qa firewalld\r\n<\/pre>\n<p>On <strong>Ubuntu 16.04<\/strong> and <strong>18.04<\/strong>, you can install it using the default package manager as shown.<\/p>\n<pre>$ sudo apt install firewalld\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Manage_Firewalld_Service_in_Linux\"><\/span>How to Manage Firewalld Service in Linux<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>Firewalld<\/strong> is a regular systemd service that can be managed via the systemctl command.<\/p>\n<pre> \r\n$ sudo systemctl start firewalld\t#start the service for the mean time\r\n$ sudo systemctl enable firewalld\t#enable the service to auto-start at boot time\r\n$ sudo systemctl status firewalld\t#view service status\r\n<\/pre>\n<p>After starting <strong>firewalld<\/strong> service, you can also check whether the daemon is running or not, using the <strong>firewall-cmd<\/strong> tool (in case it\u2019s not active, this command will output \u201cnot running\u201d).<\/p>\n<pre>$ sudo firewall-cmd --state\r\n<\/pre>\n<div id=\"attachment_31073\" class=\"wp-caption aligncenter\" style=\"width: 532px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/check-firewalld-status.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31073\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/check-firewalld-status.png?resize=522%2C59&#038;ssl=1\" alt=\"Check Firewalld Status\" width=\"522\" height=\"59\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31073\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/check-firewalld-status.png?resize=522%2C59&#038;ssl=1\" alt=\"Check Firewalld Status\" width=\"522\" height=\"59\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">Check Firewalld Status<\/p>\n<\/div>\n<p>If you happen to save any changes permanently, you can reload firewalld. This will reload firewall rules and keep state information. The current permanent configuration will become new runtime configuration.<\/p>\n<pre>$ sudo firewall-cmd --reload\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Work_with_Firewall_Zones_in_Firewalld\"><\/span>How to Work with Firewall Zones in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>To get a list of all available firewall zones and services, run these commands.<\/p>\n<pre>$ sudo firewall-cmd --get-zones\r\n$ sudo firewall-cmd --get-services\r\n<\/pre>\n<p>The default zone is the zone that is used for every firewall feature that is not explicitly bounded to another zone. You can get the default zone set for network connections and interfaces by running.<\/p>\n<pre>$ sudo firewall-cmd --get-default-zone\r\n<\/pre>\n<div id=\"attachment_31074\" class=\"wp-caption aligncenter\" style=\"width: 612px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-default-zone.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31074\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-default-zone.png?resize=602%2C59&#038;ssl=1\" alt=\"List Default Firewalld Zone\" width=\"602\" height=\"59\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31074\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-default-zone.png?resize=602%2C59&#038;ssl=1\" alt=\"List Default Firewalld Zone\" width=\"602\" height=\"59\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">List Default Firewalld Zone<\/p>\n<\/div>\n<p>To set the default zone, for example to external, use the following command. Note that adding the option <code>--permanent<\/code> sets the configuration permanently (or enables querying of information from the permanent configuration environment).<\/p>\n<pre>$ sudo firewall-cmd --set-default-zone=external\r\nOR\r\n$ sudo firewall-cmd --set-default-zone=external --permanent\r\n$ sudo firewall-cmd --reload \r\n<\/pre>\n<p>Next, let\u2019s look at how to add an interface to a zone. This example shows how to add your wireless network adapter (<strong>wlp1s0<\/strong>) to zone home, which is used in home areas.<\/p>\n<pre>$ sudo firewall-cmd --zone=home --add-interface=wlp1s0\r\n<\/pre>\n<div id=\"attachment_31075\" class=\"wp-caption aligncenter\" style=\"width: 772px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/add-an-interface-to-a-zone.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31075\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/add-an-interface-to-a-zone.png?resize=762%2C59&#038;ssl=1\" alt=\"Add an Interface to Firewalld Zone\" width=\"762\" height=\"59\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31075\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/add-an-interface-to-a-zone.png?resize=762%2C59&#038;ssl=1\" alt=\"Add an Interface to Firewalld Zone\" width=\"762\" height=\"59\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">Add an Interface to Firewalld Zone<\/p>\n<\/div>\n<p>An interface can only be added to a single zone. To move it to another zone, use the <code>--change-interface<\/code> switch as shown, or remove it from the previous zone using the <strong>\u2013remove-interface<\/strong> switch, then add it to the new zone.<\/p>\n<p>Assuming you want to connect to a public WI-FI network, you should move your wireless interface back to the public zone, like this:<\/p>\n<pre>$ sudo firewall-cmd --zone=public --add-interface=wlp1s0\r\n$ sudo firewall-cmd --zone=public --change-interface=wlp1s0\r\n<\/pre>\n<div id=\"attachment_31076\" class=\"wp-caption aligncenter\" style=\"width: 812px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31076\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to.png?resize=802%2C116&#038;ssl=1\" sizes=\"auto, (max-width: 802px) 100vw, 802px\" srcset=\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to.png 802w, https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to-768x111.png 768w\" alt=\"Change Zone Interface in Firewalld\" width=\"802\" height=\"116\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31076\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to.png?resize=802%2C116&#038;ssl=1\" alt=\"Change Zone Interface in Firewalld\" width=\"802\" height=\"116\" srcset=\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to.png 802w, https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/change-the-zone-an-interface-belongs-to-768x111.png 768w\" sizes=\"auto, (max-width: 802px) 100vw, 802px\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">Change Zone Interface in Firewalld<\/p>\n<\/div>\n<p>You can use many zones at the same time. To get a list of all active zones with the enabled features such as interfaces, services, ports, protocols, run:<\/p>\n<pre>$ sudo firewall-cmd --get-active-zones\r\n<\/pre>\n<div id=\"attachment_31077\" class=\"wp-caption aligncenter\" style=\"width: 642px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/list-active-zones.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31077\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/list-active-zones.png?resize=632%2C116&#038;ssl=1\" alt=\"List Active Zones in Firewalld\" width=\"632\" height=\"116\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31077\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/list-active-zones.png?resize=632%2C116&#038;ssl=1\" alt=\"List Active Zones in Firewalld\" width=\"632\" height=\"116\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">List Active Zones in Firewalld<\/p>\n<\/div>\n<p>In relation to the previous point, If you want to find more information about a particular zone, i.e everything added or enabled in it, use one of these commands:<\/p>\n<pre>$ sudo firewall-cmd --zone=home --list-all\r\nOR\r\n$ sudo firewall-cmd --info-zone public\r\n<\/pre>\n<div id=\"attachment_31078\" class=\"wp-caption aligncenter\" style=\"width: 612px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/find-more-information-about-a-firewall-zone.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31078\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/find-more-information-about-a-firewall-zone.png?resize=602%2C249&#038;ssl=1\" alt=\"Find Information of Firewall Zone\" width=\"602\" height=\"249\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31078\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/find-more-information-about-a-firewall-zone.png?resize=602%2C249&#038;ssl=1\" alt=\"Find Information of Firewall Zone\" width=\"602\" height=\"249\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">Find Information of Firewall Zone<\/p>\n<\/div>\n<p>Another useful option is <code>--get-target<\/code>, which shows you the target of a permanent zone. A target is one of: default, ACCEPT, DROP, REJECT. You can check the target of various zones:<\/p>\n<pre>$ sudo firewall-cmd --permanent --zone=public --get-target  \r\n$ sudo firewall-cmd --permanent --zone=block --get-target  \r\n$ sudo firewall-cmd --permanent --zone=dmz --get-target  \r\n$ sudo firewall-cmd --permanent --zone=external --get-target\r\n$ sudo firewall-cmd --permanent --zone=drop --get-target\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Open_and_Block_Ports_in_Firewalld\"><\/span>How to Open and Block Ports in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>To open a port (or port\/protocol combination) in the firewall, simply add it in a zone with the <code>--add-port<\/code> option. If you don\u2019t explicitly specify the zone, it will be enabled in the default zone.<\/p>\n<p>The following example shows how to add port <strong>80<\/strong> and <strong>443<\/strong> to allow in-bound web traffic via the <strong>HTTP<\/strong> and <strong>HTTPS<\/strong> protocols, respectively:<\/p>\n<pre>$ sudo firewall-cmd --zone=public --permanent --add-port=80\/tcp --add-port=443\/tcp\r\n<\/pre>\n<p>Next, reload firewalld and check the enabled features in the public zone once more, you should be able see the just added ports.<\/p>\n<pre>$ sudo firewall-cmd --reload\r\n$ sudo firewall-cmd --info-zone public\r\n<\/pre>\n<p>Blocking or closing a port in the firewall is equally easy, simply remove it from a zone with the <code>--remove-port<\/code> option. For example, to close ports <strong>80<\/strong> and <strong>443<\/strong> in the public zone.<\/p>\n<pre>$ sudo firewall-cmd --zone=public --permanent --remove-port=80\/tcp --remove-port=443\/tcp\r\n<\/pre>\n<p>Instead of using port or port\/protocol combination, you can use the service name to which a port is assigned as explained in the next section.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Open_and_Block_Services_in_Firewalld\"><\/span>How to Open and Block Services in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>To open a service in the firewall, enable it using the <code>--add-service<\/code> option. If zone is omitted, default zone will be used.<\/p>\n<p>The following command will permanently enable the http service in the public zone.<\/p>\n<pre>$ sudo firewall-cmd --zone=public --permanent --add-service=http \r\n$ sudo firewall-cmd --reload \r\n<\/pre>\n<p>The <code>--remove-service<\/code> option can be used to disable a service.<\/p>\n<pre>$ sudo firewall-cmd --zone=public --permanent --remove-service=http \r\n$ sudo firewall-cmd --reload \r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Enable_and_Disable_IP_Masquerading_Using_Firewalld\"><\/span>How to Enable and Disable IP Masquerading Using Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>IP Masquerading<\/strong> (also known as <strong>IPMASQ<\/strong> or <strong>MASQ<\/strong>) is a <strong>NAT<\/strong> (<strong>Network Address Translation<\/strong>) mechanism in Linux networking which allows your hosts in a network, with private IP addresses to communicate with the Internet using your Linux server\u2019s (IPMASQ gateway) assigned public IP address.<\/p>\n<p>It is a one-to-many mapping. Traffic from the your invisible hosts will appear to other computers on the internet as if it were coming from your Linux server.<\/p>\n<p>You can enable IP masquerading in a desired zone, for instance the public zone. But before doing that, first check if masquerading is active or not (a <strong>\u201cno\u201d<\/strong> means its disabled and a <strong>\u201cyes\u201d<\/strong> means otherwise).<\/p>\n<pre>$ sudo firewall-cmd --zone=public --query-masquerade\r\n$ sudo firewall-cmd --zone=public --add-masquerade\r\n<\/pre>\n<p>A typical use case for masquerading is to perform port forwarding. Assuming you want to SSH from a remote machine to a host in your internal network with the IP <strong>10.20.1.3<\/strong>, on which the sshd daemon is listening on port <strong>5000<\/strong>.<\/p>\n<p>You can forward all connections to port <strong>22<\/strong> on your Linux server to the intended port on your target host by issuing:<\/p>\n<pre>$ sudo firewall-cmd --zone=public --add-forward-port=port=22=proto=tcp:toport=5000:toaddr=10.20.1.3\r\n<\/pre>\n<p>To disable masquerading in a zone, use the <code>--remove-masquerade<\/code> switch.<\/p>\n<pre>$ sudo firewall-cmd --zone=public --remove-masquerade\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Enable_and_Disable_IMCP_Message_in_Firewalld\"><\/span>How to Enable and Disable IMCP Message in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>ICMP<\/strong> (<strong>Internet Control Message Protocol<\/strong>) messages are either information requests or replies to information requests or in error conditions.<\/p>\n<p>You can enable or disable ICMP messages in the firewall, but before that first list all supported icmp types.<\/p>\n<pre>$ sudo firewall-cmd --get-icmptypes\r\n<\/pre>\n<div id=\"attachment_31079\" class=\"wp-caption aligncenter\" style=\"width: 732px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-supported-icmp-types.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31079\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-supported-icmp-types.png?resize=722%2C97&#038;ssl=1\" alt=\"List Supported ICMP Types in Firewalld\" width=\"722\" height=\"97\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31079\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/get-supported-icmp-types.png?resize=722%2C97&#038;ssl=1\" alt=\"List Supported ICMP Types in Firewalld\" width=\"722\" height=\"97\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">List Supported ICMP Types in Firewalld<\/p>\n<\/div>\n<p>To add or remove a block type you want.<\/p>\n<pre>$ sudo firewall-cmd --zone=home --add-icmp-block=echo-reply\r\nOR\r\n$ sudo firewall-cmd --zone=home --remove-icmp-block=echo-reply\r\n<\/pre>\n<p>You can view all icmp types added in a zone using the <code>--list-icmp-blocks<\/code> switch.<\/p>\n<pre>$ sudo firewall-cmd --zone=home --list-icmp-blocks\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Use_Direct_Interface_to_Pass_Raw_iptables_Commands\"><\/span>How to Use Direct Interface to Pass Raw iptables Commands<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The firewall-cmd also provides direct options (<code>--direct<\/code>) for you to get more direct access to the firewall. This is useful for those with basic knowledge of iptables.<\/p>\n<p><strong style=\"color: red;\">Important<\/strong>: You should only use the direct options as a last resort when it\u2019s not possible to use the regular <strong>firewall-cmd<\/strong> options explained above.<\/p>\n<p>Here is an example of how to pass raw iptables rule, using the <code>--add-rules<\/code> switch. You can easily remove these rules by replacing <code>--add-rule<\/code> with <code>--remove-rule<\/code>:<\/p>\n<pre>$ sudo firewall-cmd --direct --add-rule ipv4 filter IN_public_allow 0 -m tcp -p tcp --dport 80 -j ACCEPT\r\n<\/pre>\n<p>For more information about <strong>iptables<\/strong>, see this guide: How To Setup an Iptables Firewall to Enable Remote Access to Services in Linux.<\/p>\n<p>If you aren\u2019t familiar with iptables syntax, you can opt for firewalld\u2019s \u201c<strong>rich language<\/strong>\u201d for creating more complex firewall rules in an easy to understand manner as explained next.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Use_Rich_Language_in_Firewalld\"><\/span>How to Use Rich Language in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The <strong>rich language<\/strong> (also known as <strong>rich rules<\/strong>) is used to add more complex firewall rules for <strong>IPv4<\/strong> and <strong>IPv6<\/strong> without the knowledge of iptables syntax.<\/p>\n<p>It extends the zone features (service, port, icmp-block, masquerade and forward-port) that we have covered. It supports source and destination addresses, logging, actions and limits for logs and actions.<\/p>\n<p>The <code>--add-rich-rule<\/code> is used to add rich rules. This example shows how to allow new <strong>IPv4<\/strong> and <strong>IPv6<\/strong> connections for service http and log 1 per minute using audit:<\/p>\n<pre>$ sudo firewall-cmd --add-rich-rule='rule service name=\"http\" audit limit value=\"1\/m\" accept'\r\n<\/pre>\n<p>To remove the added rule, replace the <code>--add-rich-rule<\/code> option with <code>--remove-rich-rule<\/code>.<\/p>\n<pre>$ sudo firewall-cmd --remove-rich-rule='rule service name=\"http\" audit limit value=\"1\/m\" accept'\r\n<\/pre>\n<p>This feature also allows for blocking or allowing traffic from a specific IP address. The following example shows how to reject connections from the IP <strong>10.20.1.20<\/strong>.<\/p>\n<pre>$ sudo firewall-cmd --zone=public --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.254\" reject'\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Enable_and_Disable_Panic_Mode_in_Firewalld\"><\/span>How to Enable and Disable Panic Mode in Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>Panic mode<\/strong> is a special mode under firewalld where all in-bound and out-bound packets are dropped, and active connections will expire once activated.<br \/>\nYou can enable this mode in emergency situations where a threat to your network environment exits.<\/p>\n<p>To query panic mode, use the <code>--query-panic<\/code> option.<\/p>\n<pre>$ sudo firewall-cmd --query-panic\r\n<\/pre>\n<p>To enable panic mode, use the <code>--panic-on<\/code> option. You can test if it is working using the ping command as shown. Because the packet is dropped, the name <strong>www.google.com<\/strong> can not be resolved, hence the error displayed.<\/p>\n<pre>$ sudo firewall-cmd --panic-on\r\n$ ping -c 2 www.google.com\r\n<\/pre>\n<div id=\"attachment_31080\" class=\"wp-caption aligncenter\" style=\"width: 912px;\">\n<p><a href=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode.png?ssl=1\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31080\" style=\"display: inline;\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode.png?resize=902%2C287&#038;ssl=1\" sizes=\"auto, (max-width: 902px) 100vw, 902px\" srcset=\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode.png 902w, https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode-768x244.png 768w\" alt=\"Enable Panic Mode in Firewalld\" width=\"902\" height=\"287\" data-lazy-loaded=\"true\" \/><noscript><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-31080\" src=\"https:\/\/i0.wp.com\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode.png?resize=902%2C287&#038;ssl=1\" alt=\"Enable Panic Mode in Firewalld\" width=\"902\" height=\"287\" srcset=\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode.png 902w, https:\/\/www.tecmint.com\/wp-content\/uploads\/2018\/11\/enable-and-disable-panic-mode-768x244.png 768w\" sizes=\"auto, (max-width: 902px) 100vw, 902px\" \/><\/noscript><\/a><\/p>\n<p class=\"wp-caption-text\">Enable Panic Mode in Firewalld<\/p>\n<\/div>\n<p>To disable panic mode, use the <code>--panic-off<\/code> option.<\/p>\n<pre>$ sudo firewall-cmd --panic-off\r\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_to_Lockdown_Firewalld\"><\/span>How to Lockdown Firewalld<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Remember, we mentioned under the basics about firewalld that local applications or services are able to alter the firewall configuration if they are running with root privileges. You can control which applications are able to request firewall changes, by specifying then in a lockdown whitelist.<\/p>\n<p>This feature is turned off by default, you can enable or disable it with the <code>--lockdown-on<\/code> or <code>--lockdown<\/code> switch receptively.<\/p>\n<pre>$ sudo firewall-cmd --lockdown-on\r\nOR\r\n$ sudo firewall-cmd --lockdown-off\r\n<\/pre>\n<p>Note that it is recommended to enable or disable this feature by editing the main config file, because the firewall-cmd may not exist on lockdown whitelist when you enable lockdown.<\/p>\n<pre>$ sudo vim \/etc\/firewalld\/firewalld.conf\r\n<\/pre>\n<p>Find the parameter <strong>Lockdown<\/strong> and change its value from <code>no<\/code> (means off) to <code>yes<\/code> (means on).<\/p>\n<pre>Lockdown=yes\r\n<\/pre>\n<p>To make this setting permanent reload firewalld.<\/p>\n<pre>$ sudo firewall-cmd --reload\r\n<\/pre>\n<h5><span class=\"ez-toc-section\" id=\"Summary\"><\/span>Summary<span class=\"ez-toc-section-end\"><\/span><\/h5>\n<p><strong>Firewalld<\/strong> is an easy to use replacement for the iptables service, which uses iptables as a backend. In this article, we have shown how to install firewalld package, explained firewalld\u2019s important features and discussed how to configure them in the runtime and permanent configuration environments.<\/p>\n<p>If you have any questions or comments, feel free to reach us via the comment form below. You may refer to the firewalld manual page (man firewalld) or the <a href=\"https:\/\/firewalld.org\/documentation\/\" target=\"_blank\" rel=\"nofollow noopener\">firewalld documentation<\/a> in the project website, for more information.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Firewalld (firewall daemon) merupakan alternatif untuk layanan\u00a0iptables, untuk mengelola firewall dengan dukungan jaringan. sangat mudah untuk di gunakan dan mengkonfigurasinya, dan ini dia managemenr default firewall di\u00a0RHEL\/CentOS, Fedora\u00a0dan beberapa OS Linux lainnya.\u00a0Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu. Pada artikel ini, kami akan mendiskusikan bagaimana untuk mengkonfigurasi system firewall dengan\u00a0firewalld\u00a0dan mengimplementasikan paket [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1720,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[91],"tags":[],"class_list":["post-1719","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.5 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/\" \/>\n<meta property=\"og:locale\" content=\"id_ID\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id\" \/>\n<meta property=\"og:description\" content=\"Firewalld (firewall daemon) merupakan alternatif untuk layanan\u00a0iptables, untuk mengelola firewall dengan dukungan jaringan. sangat mudah untuk di gunakan dan mengkonfigurasinya, dan ini dia managemenr default firewall di\u00a0RHEL\/CentOS, Fedora\u00a0dan beberapa OS Linux lainnya.\u00a0Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu. Pada artikel ini, kami akan mendiskusikan bagaimana untuk mengkonfigurasi system firewall dengan\u00a0firewalld\u00a0dan mengimplementasikan paket [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/\" \/>\n<meta property=\"og:site_name\" content=\"Hostnic.id\" \/>\n<meta property=\"article:published_time\" content=\"2018-11-23T03:29:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"810\" \/>\n\t<meta property=\"og:image:height\" content=\"456\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ari Sigit\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Ditulis oleh\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ari Sigit\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimasi waktu membaca\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 menit\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/\"},\"author\":{\"name\":\"Ari Sigit\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/#\\\/schema\\\/person\\\/a782d1235d484e7630007157996e5a49\"},\"headline\":\"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu\",\"datePublished\":\"2018-11-23T03:29:44+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/\"},\"wordCount\":1936,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.hostnic.id\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/firewalls.jpg?fit=810%2C456&ssl=1\",\"articleSection\":[\"Linux\"],\"inLanguage\":\"id\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/\",\"url\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/\",\"name\":\"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.hostnic.id\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/firewalls.jpg?fit=810%2C456&ssl=1\",\"datePublished\":\"2018-11-23T03:29:44+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/#\\\/schema\\\/person\\\/a782d1235d484e7630007157996e5a49\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#breadcrumb\"},\"inLanguage\":\"id\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#primaryimage\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.hostnic.id\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/firewalls.jpg?fit=810%2C456&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.hostnic.id\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/firewalls.jpg?fit=810%2C456&ssl=1\",\"width\":810,\"height\":456,\"caption\":\"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/tutorial\\\/linux\\\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/\",\"name\":\"hostnic.id\",\"description\":\"Info, Tips dan Tutorial Seputar Layanan Hostnic\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"id\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/#\\\/schema\\\/person\\\/a782d1235d484e7630007157996e5a49\",\"name\":\"Ari Sigit\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g\",\"caption\":\"Ari Sigit\"},\"description\":\"Application Developer &amp; Support Specialist\",\"url\":\"https:\\\/\\\/www.hostnic.id\\\/blog\\\/author\\\/admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/","og_locale":"id_ID","og_type":"article","og_title":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id","og_description":"Firewalld (firewall daemon) merupakan alternatif untuk layanan\u00a0iptables, untuk mengelola firewall dengan dukungan jaringan. sangat mudah untuk di gunakan dan mengkonfigurasinya, dan ini dia managemenr default firewall di\u00a0RHEL\/CentOS, Fedora\u00a0dan beberapa OS Linux lainnya.\u00a0Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu. Pada artikel ini, kami akan mendiskusikan bagaimana untuk mengkonfigurasi system firewall dengan\u00a0firewalld\u00a0dan mengimplementasikan paket [&hellip;]","og_url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/","og_site_name":"Hostnic.id","article_published_time":"2018-11-23T03:29:44+00:00","og_image":[{"width":810,"height":456,"url":"https:\/\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg","type":"image\/jpeg"}],"author":"Ari Sigit","twitter_card":"summary_large_image","twitter_misc":{"Ditulis oleh":"Ari Sigit","Estimasi waktu membaca":"11 menit"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#article","isPartOf":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/"},"author":{"name":"Ari Sigit","@id":"https:\/\/www.hostnic.id\/blog\/#\/schema\/person\/a782d1235d484e7630007157996e5a49"},"headline":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu","datePublished":"2018-11-23T03:29:44+00:00","mainEntityOfPage":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/"},"wordCount":1936,"commentCount":0,"image":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg?fit=810%2C456&ssl=1","articleSection":["Linux"],"inLanguage":"id","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/","url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/","name":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu - Hostnic.id","isPartOf":{"@id":"https:\/\/www.hostnic.id\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#primaryimage"},"image":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg?fit=810%2C456&ssl=1","datePublished":"2018-11-23T03:29:44+00:00","author":{"@id":"https:\/\/www.hostnic.id\/blog\/#\/schema\/person\/a782d1235d484e7630007157996e5a49"},"breadcrumb":{"@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#breadcrumb"},"inLanguage":"id","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/"]}]},{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#primaryimage","url":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg?fit=810%2C456&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg?fit=810%2C456&ssl=1","width":810,"height":456,"caption":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu"},{"@type":"BreadcrumbList","@id":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-konfigurasi-dan-menggunakan-firewall-di-centos-dan-ubuntu\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.hostnic.id\/blog\/"},{"@type":"ListItem","position":2,"name":"Cara Install, Konfigurasi dan Menggunakan Firewall di CentOS dan Ubuntu"}]},{"@type":"WebSite","@id":"https:\/\/www.hostnic.id\/blog\/#website","url":"https:\/\/www.hostnic.id\/blog\/","name":"hostnic.id","description":"Info, Tips dan Tutorial Seputar Layanan Hostnic","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.hostnic.id\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"id"},{"@type":"Person","@id":"https:\/\/www.hostnic.id\/blog\/#\/schema\/person\/a782d1235d484e7630007157996e5a49","name":"Ari Sigit","image":{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/secure.gravatar.com\/avatar\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/140001cab6874fc4d4cecb4b3519ceca05b4fa2543ed46c5dae3704831ed3a2d?s=96&d=mm&r=g","caption":"Ari Sigit"},"description":"Application Developer &amp; Support Specialist","url":"https:\/\/www.hostnic.id\/blog\/author\/admin\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/11\/firewalls.jpg?fit=810%2C456&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p8D2mv-rJ","jetpack-related-posts":[{"id":1813,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-disable-atau-hapus-firewall-iptables-di-linux\/","url_meta":{"origin":1719,"position":0},"title":"Cara Disable atau Hapus Firewall Iptables di Linux","author":"Ari Sigit","date":"2018-12-03","format":false,"excerpt":"Bagaimana cara disable iptables firewall di Fedora Linux? Perintah Iptables digunakan untuk set up, maintain, dan inspect tables dari filter pengaturan IP packet pada Linux kernel. Anda harus menjalankan perintah sesuai Linux distro yang di gunakan. Cara menghentikan dan disable firewalld di CentOS Linux 7\/RHEL v7 dan Terbaru Firewalld adalah\u2026","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2102,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/cara-block-icmp-di-linux\/","url_meta":{"origin":1719,"position":1},"title":"Cara Block ICMP di Linux","author":"Nanda Anubis","date":"2019-04-27","format":false,"excerpt":"ICMP ( Internet Control Message Protocol ) adalah salah satu protokol dalam rangkaian IP (Internet Protokol) . Inidigunakan seperti report dari semua perangkat jaringan.\u00a0 Juga administrator jaringan dan sistem menggunakannya untuk troubleshoot konektivitas dari ping dan traceroute. Respons ICMP harus ditolak oleh\u00a0 firewall host. Berikut ini anda dapat memblokir permintaan\u2026","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2019\/04\/block.jpg?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":3106,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/disable-firewalld-pada-centos\/","url_meta":{"origin":1719,"position":2},"title":"Disable firewalld pada CentOS","author":"Nanda Anubis","date":"2020-07-27","format":false,"excerpt":"Step by step Check status firewalld firewall-cmd --state Stop service firewalld systemctl stop firewalld Disable service firewalld systemctl disable firewalld","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2019\/07\/centos.png?fit=710%2C444&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2019\/07\/centos.png?fit=710%2C444&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2019\/07\/centos.png?fit=710%2C444&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2019\/07\/centos.png?fit=710%2C444&ssl=1&resize=700%2C400 2x"},"classes":[]},{"id":1992,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-nginx-mysql-mariadb-dan-php-pada-rhel-8\/","url_meta":{"origin":1719,"position":3},"title":"Cara Install Nginx, MySQL\/MariaDB dan PHP pada RHEL 8","author":"Ari Sigit","date":"2018-12-31","format":false,"excerpt":"Banyak pembaca tahu tentang LAMP, tetapi sedikit orang yang menyadari LEMP, yang menggantikan server web Apache dengan Nginx. Setiap server web memiliki pro dan kontra dan itu tergantung pada situasi spesifik Anda yang mana yang akan Anda pilih untuk digunakan. Dalam tutorial ini, kami akan menunjukkan kepada Anda bagaimana menginstal\u2026","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"Cara Install Apache, MySQL\/MariaDB dan PHP pada RHEL 8","src":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=700%2C400 2x"},"classes":[]},{"id":1989,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-apache-mysql-mariadb-dan-php-pada-rhel-8\/","url_meta":{"origin":1719,"position":4},"title":"Cara Install Apache, MySQL\/MariaDB dan PHP pada RHEL 8","author":"Ari Sigit","date":"2018-12-31","format":false,"excerpt":"Dalam tutorial ini, Anda akan belajar cara menginstal LAMP stack - Linux, Apache, MySQL \/ MariaDB, PHP pada sistem RHEL 8. Tutorial ini menganggap bahwa Anda telah mengaktifkan langganan RHEL 8 dan bahwa Anda memiliki akses root ke sistem Anda. Step 1: Install Apache Web Server 1. Pertama, kita akan\u2026","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"Cara Install Apache, MySQL\/MariaDB dan PHP pada RHEL 8","src":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/lamp.png?fit=940%2C529&ssl=1&resize=700%2C400 2x"},"classes":[]},{"id":1968,"url":"https:\/\/www.hostnic.id\/blog\/tutorial\/linux\/cara-install-virtualbox-6-0-pada-os-linux\/","url_meta":{"origin":1719,"position":5},"title":"Cara Install VirtualBox 6.0 Pada OS Linux","author":"Ari Sigit","date":"2018-12-25","format":false,"excerpt":"VirtualBox adalah perangkat lunak virtualisasi lintas-platform open source, dapat diinstal pada sistem operasi apa pun dan memungkinkan Anda untuk menginstal dan menjalankan beberapa sistem operasi di komputer yang sama. Misalnya, jika Anda menginstalnya di sistem Linux, Anda dapat menjalankan sistem operasi Windows XP di bawahnya sebagai OS Tamu atau menjalankan\u2026","rel":"","context":"dalam &quot;Linux&quot;","block_context":{"text":"Linux","link":"https:\/\/www.hostnic.id\/blog\/.\/tutorial\/linux\/"},"img":{"alt_text":"Cara Install VirtualBox 6.0 Pada OS Linux","src":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/virtualbox-6-0-officially-released-with-major-new-features-here-s-what-s-new-524331-2.jpg?fit=625%2C361&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/virtualbox-6-0-officially-released-with-major-new-features-here-s-what-s-new-524331-2.jpg?fit=625%2C361&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.hostnic.id\/blog\/wp-content\/uploads\/2018\/12\/virtualbox-6-0-officially-released-with-major-new-features-here-s-what-s-new-524331-2.jpg?fit=625%2C361&ssl=1&resize=525%2C300 1.5x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/posts\/1719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/comments?post=1719"}],"version-history":[{"count":1,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/posts\/1719\/revisions"}],"predecessor-version":[{"id":1721,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/posts\/1719\/revisions\/1721"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/media\/1720"}],"wp:attachment":[{"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/media?parent=1719"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/categories?post=1719"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.hostnic.id\/blog\/wp-json\/wp\/v2\/tags?post=1719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}