1semanage-port(8) semanage-port(8)
2
3
4
6 semanage-port - SELinux Policy Management port mapping tool
7
9 semanage port [-h] [-n] [-N] [-S STORE] [ --add -t TYPE -p PROTOCOL -r
10 RANGE port_name | port_range | --delete -p PROTOCOL port_name |
11 port_range | --deleteall | --extract | --list [-C] | --modify -t TYPE
12 -p PROTOCOL -r RANGE port_name | port_range ]
13
14
16 semanage is used to configure certain elements of SELinux policy with‐
17 out requiring modification to or recompilation from policy sources.
18 semanage port controls the port number to port type definitions.
19
20
22 -h, --help
23 show this help message and exit
24
25 -n, --noheading
26 Do not print heading when listing the specified object type
27
28 -N, --noreload
29 Do not reload policy after commit
30
31 -S STORE, --store STORE
32 Select an alternate SELinux Policy Store to manage
33
34 -C, --locallist
35 List local customizations
36
37 -a, --add
38 Add a record of the specified object type
39
40 -d, --delete
41 Delete a record of the specified object type
42
43 -m, --modify
44 Modify a record of the specified object type
45
46 -l, --list
47 List records of the specified object type
48
49 -E, --extract
50 Extract customizable commands, for use within a transaction
51
52 -D, --deleteall
53 Remove all local customizations
54
55 -t TYPE, --type TYPE
56 SELinux type for the object
57
58 -r RANGE, --range RANGE
59 MLS/MCS Security Range (MLS/MCS Systems only) SELinux Range for
60 SELinux login mapping defaults to the SELinux user record range.
61 SELinux Range for SELinux user defaults to s0.
62
63 -p PROTO, --proto PROTO
64 Protocol for the specified port (tcp|udp|dccp|sctp) or internet
65 protocol version for the specified node (ipv4|ipv6).
66
67
69 List all port definitions
70 # semanage port -l
71 Allow Apache to listen on tcp port 81
72 # semanage port -a -t http_port_t -p tcp 81
73 Allow sshd to listen on tcp port 8991
74 # semanage port -a -t ssh_port_t -p tcp 8991
75
76
78 selinux(8), semanage(8)
79
80
82 This man page was written by Daniel Walsh <dwalsh@redhat.com>
83
84
85
86 20130617 semanage-port(8)