5.10. Configuring IP Address Masquerading

To check if IP masquerading is enabled (for example, for the external zone), enter the following command as root:

~]# firewall-cmd --zone=external --query-masquerade

The command prints yes with exit status 0 if enabled. It prints no with exit status 1 otherwise. If zone is omitted, the default zone will be used.

To enable IP masquerading, enter the following command as root:

~]# firewall-cmd --zone=external --add-masquerade

To make this setting persistent, repeat the command adding the --permanent option.

To disable IP masquerading, enter the following command as root:

~]# firewall-cmd --zone=external --remove-masquerade

To make this setting persistent, repeat the command adding the --permanent option.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Services

Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

Red Hat Training

5.10. Configuring IP Address Masquerading