Today I Learned: How to open etcd ports on Firewalld

Posted bygamma1138 Leave a comment on Today I Learned: How to open etcd ports on Firewalld

Today I learned how to properly open etcd ports using firewalld. Here’s a quick guide:

FirewallD has a couple of predefined services with various ports. Find available services on FirewallD:

sudo firewall-cmd --get-services | grep etcd

You’ll find two services: etcd-client (port 2379/tcp) and etcd-server (port 2380/tcp).

Identify Active Firewall Zones:

sudo firewall-cmd --get-active-zones

Example output:

FedoraServer (default)
  interfaces: enp0s20f2

Add these 2 services to your zone:

sudo firewall-cmd --zone=FedoraServer --add-service=etcd-client --permanent
sudo firewall-cmd --zone=FedoraServer --add-service=etcd-server --permanent
sudo firewall-cmd --reload

P.S. Make sure to check your active zone!

Verify the open services:

sudo firewall-cmd --list-services
etcd-client etcd-server

Leave a comment