Firewalld

• https://wiki.archlinux.org/title/Firewalld

sudo firewall-cmd --list-all

sudo firewall-cmd --get-services

• Change x to name of a service from above
• This shows what ports and protocols a service covers

sudo firewall-cmd --info-service=x

sudo firewall-cmd --reload

• Add --permanent as-needed to allow the rule to persist

sudo firewall-cmd --add-service=x

sudo firewall-cmd --remove-service=x

• Add --permanent as-needed to allow the rule to persist
• Change tcp to udp as-needed

sudo firewall-cmd --add-port=x/tcp

sudo firewall-cmd --remove-port=x/tcp

sudo firewall-cmd --get-active-zones

sudo firewall-cmd --permanent --zone='docker' --remove-interface='docker0'

sudo systemctl restart 'firewalld'

block (default)
  interfaces: eno1
docker
  interfaces: docker0