Sender: |
|
Date: |
Wed, 19 Apr 2017 16:03:43 -0500 |
Reply-To: |
|
Message-ID: |
|
Subject: |
|
MIME-Version: |
1.0 |
Content-Transfer-Encoding: |
7bit |
In-Reply-To: |
|
Content-Type: |
text/plain; charset="utf-8"; format=flowed |
From: |
|
Parts/Attachments: |
|
|
On 04/19/2017 03:55 PM, Kelley Trombly-Freytag wrote:
> When I tried to add to my ipset, (firewall-cmd --permanent --ipset=groupips --add-entry=XXX.XXX.XX.0/24)
> I received the following error:
>
> Error: IO_Object_XMLGenerator instance has no attribute '_out'
>
> This subsequently made my ipset file empty, and as a result, I can not ssh into the machine.
>
> Can I just recreate the ipset file under /etc/firewalld/ipsets and try to firewall-cmd --reload?
>
> What is this error and how do I fix it?
>
> I am currently running redhat release 7.2. Firewalld is at firewalld-0.4.3.2-8, with
> no yum updates outstanding.
>
> Kelley Trombly-Freytag
>
I just tried this and had no problems on 7.2:
[root@csdev17 ipsets]# cat /etc/redhat-release
Scientific Linux release 7.2 (Nitrogen)
[root@csdev17 ipsets]# rpm -qa firewalld
firewalld-0.4.3.2-8.el7.noarch
[root@csdev17 ipsets]# firewall-cmd --permanent --new-ipset=groupips
--type=hash:net
success
[root@csdev17 ipsets]# firewall-cmd --permanent --ipset=groupips
--add-entry=192.168.3.0/24
success
With that said, you should be able to replace the xml file by hand and
reload your firewall.
-Mark
|
|
|