Manage firewalld
Stuff n things
Open Port
sudo firewall-cmd --zone=public --add-port=80/tcp sudo firewall-cmd --zone=public --add-port=9987/udp
Remove port opening
sudo firewall-cmd --zone=public --remove-port=80/tcp sudo firewall-cmd --zone=public --remove-port=9987/udp
List rules etc
firewall-cmd --list-all
Enable firewalld
systemctl enable --now firewalld
Disable firewalld
systemctl disable firewalld --now
Reload firewalld
firewall-cmd --reload
Updates
dnf update
Docker install
sudo dnf install -y dnf-utils
sudo dnf config-manager --add-repo https://download.docker.com/linux/rhel/docker-ce.repo -y
sudo yum install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin -y
sudo systemctl enable docker
sudo systemctl start docker
Expand Rocky LVM disk
Expand in your hypervisor
Set disk type 8e, Linux LVM
Create PV volume (/dev/sda3 in my example)
Check what PVS you want to expand
pvs
PV VG Fmt Attr PSize PFree
/dev/sda2 rl lvm2 a-- <63.00g 0
/dev/sda3 lvm2 --- 36.00g 36.00g
In my case, volumegroup "rl"
vgextend rl /dev/sda3
Check which LV you want to expand
lvdisplay
--- Logical volume ---
LV Path /dev/rl/swap
LV Name swap
VG Name rl
<Removed unnecessary info>
--- Logical volume ---
LV Path /dev/rl/home
LV Name home
VG Name rl
<Removed unnecessary info>
--- Logical volume ---
LV Path /dev/rl/root
LV Name root
VG Name rl
<Removed unnecessary info>
in my case I want to expand "/dev/rl/root"
lvextend -l +100%FREE /dev/rl/root /dev/sda3
Size of logical volume rl/root changed from <39.68 GiB (10157 extents) to 75.67 GiB (19372 extents).
Logical volume rl/root successfully resized.
xfs_growfs /dev/rl/root
meta-data=/dev/mapper/rl-root isize=512 agcount=4, agsize=2600192 blks
= sectsz=512 attr=2, projid32bit=1
= crc=1 finobt=1, sparse=1, rmapbt=0
= reflink=1 bigtime=1 inobtcount=1 nrext64=0
data = bsize=4096 blocks=10400768, imaxpct=25
= sunit=0 swidth=0 blks
naming =version 2 bsize=4096 ascii-ci=0, ftype=1
log =internal log bsize=4096 blocks=16384, version=2
= sectsz=512 sunit=0 blks, lazy-count=1
realtime =none extsz=4096 blocks=0, rtextents=0
data blocks changed from 10400768 to 19836928
Verify that /dev/mapper/rl-root has grown
df -h
Filesystem Size Used Avail Use% Mounted on
devtmpfs 4.0M 0 4.0M 0% /dev
tmpfs 1.8G 0 1.8G 0% /dev/shm
tmpfs 732M 9.3M 723M 2% /run
/dev/mapper/rl-root 76G 16G 61G 20% /
/dev/sda1 960M 403M 558M 42% /boot
/dev/mapper/rl-home 20G 339M 19G 2% /home
Onboard MDE sensor
Download the onboarding package from security.microsoft.com
Transfer it to the machine
Download the installer script from https://github.com/microsoft/mdatp-xplat/tree/master/linux/installation
sudo dnf install yum-utils -y
sudo ./mde_installer.sh --install --channel prod --onboard MicrosoftDefenderATPOnboardingLinuxServer.py --tag GROUP MGMT --min_req -y
# Check health status (should return true)
mdatp health --field healthy
# Enable Realtime protection
mdatp config real-time-protection --value enabled
# Check if enabled
mdatp health --field real_time_protection_enabled
# Enable PUA Protection, Available actions: off, audit, block. Default Audit.
mdatp threat policy set --type potentially_unwanted_application --action block
# Enable behavioural monitoring
mdatp config behavior_monitoring --value enabled