1901/firewall.sh

## firewall.sh
# list enabled ports/services
firewall-cmd --zone=public --list-ports
firewall-cmd --zone=public --list-service

# enable http(s) port (80 443) using the firewall-cmd
firewall-cmd --permanent --zone=public --add-service=http
firewall-cmd --permanent --zone=public --add-service=https
firewall-cmd --reload

# enable specified port
firewall-cmd --permanent --zone=public --add-port=8080/tcp

# get avaiabled zones
firewall-cmd --get-zones

# get zone of interface `tun0`
firewall-cmd --get-zone-of-interface=tun0

# add zone to interface `tun0`
firewall-cmd --zone=internal --add-interface=tun0

# configuration dir
/etc/firewalld/zones/
	# list enabled ports/services
	firewall-cmd --zone=public --list-ports
	firewall-cmd --zone=public --list-service

	# enable http(s) port (80 443) using the firewall-cmd
	firewall-cmd --permanent --zone=public --add-service=http
	firewall-cmd --permanent --zone=public --add-service=https
	firewall-cmd --reload

	# enable specified port
	firewall-cmd --permanent --zone=public --add-port=8080/tcp

	# get avaiabled zones
	firewall-cmd --get-zones

	# get zone of interface `tun0`
	firewall-cmd --get-zone-of-interface=tun0

	# add zone to interface `tun0`
	firewall-cmd --zone=internal --add-interface=tun0

	# configuration dir
	/etc/firewalld/zones/