1semanage-port(8)                                              semanage-port(8)
2
3
4

NAME

6       semanage-port - SELinux Policy Management port mapping tool
7

SYNOPSIS

9       semanage  port [-h] [-n] [-N] [-S STORE] [ --add -t TYPE -p PROTOCOL -r
10       RANGE port_name  |  port_range  |  --delete  -p  PROTOCOL  port_name  |
11       port_range  |  --deleteall | --extract | --list [-C] | --modify -t TYPE
12       -p PROTOCOL -r RANGE port_name | port_range ]
13
14

DESCRIPTION

16       semanage is used to configure certain elements of SELinux policy  with‐
17       out  requiring  modification  to  or recompilation from policy sources.
18       semanage port controls the port number to port type definitions.
19
20

OPTIONS

22       -h, --help
23              show this help message and exit
24
25       -n, --noheading
26              Do not print heading when listing the specified object type
27
28       -N, --noreload
29              Do not reload policy after commit
30
31       -S STORE, --store STORE
32              Select an alternate SELinux Policy Store to manage
33
34       -C, --locallist
35              List local customizations
36
37       -a, --add
38              Add a record of the specified object type
39
40       -d, --delete
41              Delete a record of the specified object type
42
43       -m, --modify
44              Modify a record of the specified object type
45
46       -l, --list
47              List records of the specified object type
48
49       -E, --extract
50              Extract customizable commands, for use within a transaction
51
52       -D, --deleteall
53              Remove all local customizations
54
55       -t TYPE, --type TYPE
56              SELinux type for the object
57
58       -r RANGE, --range RANGE
59              MLS/MCS Security Range (MLS/MCS Systems only) SELinux Range  for
60              SELinux login mapping defaults to the SELinux user record range.
61              SELinux Range for SELinux user defaults to s0.
62
63       -p PROTO, --proto PROTO
64              Protocol for the specified port (tcp|udp|dccp|sctp) or  internet
65              protocol version for the specified node (ipv4|ipv6).
66
67

EXAMPLE

69       List all port definitions
70       # semanage port -l
71       Allow Apache to listen on tcp port 81
72       # semanage port -a -t http_port_t -p tcp 81
73       Allow sshd to listen on tcp port 8991
74       # semanage port -a -t ssh_port_t -p tcp 8991
75
76

SEE ALSO

78       selinux(8), semanage(8)
79
80

AUTHOR

82       This man page was written by Daniel Walsh <dwalsh@redhat.com>
83
84
85
86                                   20130617                   semanage-port(8)
Impressum