Firewalld allowing all connections after following DISA STIG rate limiting recommendations

Solution Verified - Updated -

Issue

After following DISA STIG recommendations for rate limiting traffic firewalld is allowing all incoming connections.

# firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m limit --limit 25/minute --limit-burst 100  -j ACCEPT

Environment

  • Red Hat Enterprise Linux 7
    • DISA STIG

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content