...
- In the AWS cloud, an IAM role allowing the ListUsers action (IAMReadOnlyAccess in the example below) must be attached to the instance. This can be done during the launch of the instance as shown in the sample below.
Alternatively, the role can be set/changed by selecting the instance and then use the menu Actions > Instance Settings > Attach/Replace Modify IAM Role. If such a role has not yet been defined, please refer to Creating and Attaching an AWS IAM Role and to the documentation provided by AWS for additional information.
...
- The default zone name can be found with the command
firewall-cmd --get--default-zone, a list of all zones can be displayed with the commandfirewall-cmd --get-zones. - The parameter --permanent writes the command to the respective firewalld configuration files. To add the command to the running firewall, re-run it without the parameter --permanent.
- The above simplified sample above does not limit the source IP address to the addresses of the license clients. This would require a more sophisticated configuration. Please refer to the documentation of your Linux system.
...