firewall-cmd —list-all sudo firewall-cmd --zone=public --add-port=/tcp --permanent# zone 作用域 sudo systemctl restart firewalld.service
