firewall-cmd --zone=public --list-all<\/code><\/pre>\n\n\n\n<\/div>\n\n\n\n![\"\"](\"https:\/\/lamp.ciscoar.com\/wp-content\/uploads\/2020\/02\/linux-centos7-installing-Apache-web-server-05-firewall-entry-missing.png\")
<\/a>Firewall exception list<\/figcaption><\/figure><\/div>\n\n\n\nAs you can see in the image above, there are only two services on the firewall exception list, DHCPv6-client and SSH, we want to have there also HTTP and HTTPS the last one will be included when configuring the certificates, by now, just adding “http” we’ll be fine. <\/p>\n\n\n\n
Adding Apache to the firewall<\/h2>\n\n\n\n
You can permanently add an entry for Apache running the following CLI command.<\/p>\n\n\n\n
firewall-cmd --zone=public --permanent --add-service=http<\/code><\/pre>\n\n\n\n<\/div>\n\n\n\n![\"\"](\"https:\/\/lamp.ciscoar.com\/wp-content\/uploads\/2020\/02\/linux-centos7-installing-Apache-web-server-06-adding-http-to-firewall.png\")
<\/a>Adding Apache “http” to the firewall exception list<\/figcaption><\/figure><\/div>\n\n\n\nReload firewall to activate changes<\/h2>\n\n\n\n
In order to activate the changes you must reload the firewall, and for that you can run the following CLI command:<\/p>\n\n\n\n
firewall-cmd --reload<\/code><\/pre>\n\n\n\n<\/div>\n\n\n\n![\"\"](\"https:\/\/lamp.ciscoar.com\/wp-content\/uploads\/2020\/02\/linux-centos7-installing-Apache-web-server-07-reload.png\")
<\/a>Reloading firewall<\/figcaption><\/figure><\/div>\n\n\n\nFirewall settings after adding “http”<\/h2>\n\n\n\n
Let’s check now once again to see if “http” was actually added as an exception to the firewall.<\/p>\n\n\n\n
firewall-cmd --zone=public --list-all<\/code><\/pre>\n\n\n\n<\/div>\n\n\n\n![\"\"](\"https:\/\/lamp.ciscoar.com\/wp-content\/uploads\/2020\/02\/linux-centos7-installing-Apache-web-server-08-after.png\")
<\/a>Apache “http” was successfully added to the Firewall <\/figcaption><\/figure><\/div>\n\n\n\nYou can also add “https<\/strong>” following the same procedure, in our case we are going to do that in a further article, when configuring the certificates.<\/p>\n\n\n\nApache is now working fine<\/h2>\n\n\n\n
Now that you know Apache service is up and running and the firewall is configured properly, try again to open the Apache’s Test Page<\/strong> using your browser and the IP Address of your CentOS Virtual Machine, you must be able to see the following page:<\/p>\n\n\n\n![\"\"](\"https:\/\/lamp.ciscoar.com\/wp-content\/uploads\/2020\/02\/linux-centos7-installing-Apache-web-server-09-webpage-ok.png\")
<\/a>Apache Test Page<\/figcaption><\/figure><\/div>\n\n\n\nWhere to go next?<\/h2>\n\n\n\n
You can now move forward to the most important topic you’ll find when it comes to Apache’s capabilities, I’m talking about Virtual Hosts.<\/p>\n\n\n\n
- How to add an Apache’s Virtual Host<\/a><\/li>
- How to remove an Apache’s Virtual Host<\/a><\/li><\/ul>\n","protected":false},"excerpt":{"rendered":"
Firewall settings by default By default the firewall is not configured to allow Apache’s traffic, you can check which services are on the firewall exception list using the following CLI command. As you can see in the image above, there are only two services on the firewall exception list, DHCPv6-client and SSH, we want to … <\/p>\n