BASH – firewalld commands

Add new rich rule

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="8.8.8.8/32" port port="53" protocol="tcp" accept'
success

firewall-cmd --reload

iptables-save | grep ".8.8."
  -A IN_public_allow -s 8.8.8.8/32 -p tcp -m tcp --dport 53 -m conntrack --ctstate NEW -j ACCEPT

Delete rich rule

firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="129.132.116.250/32" port port="22" protocol="tcp" accept'

firewall-cmd --reload
success