1、查看防火墙状态
systemctl status firewalld
2、如果不是显示active状态,需要打开防火墙
systemctl start firewalld
3、# 查看所有已开放的临时端口(默认为空)
# firewall-cmd —list-ports
# 查看所有永久开放的端口(默认为空)
# firewall-cmd —list-ports —permanent
# 添加临时开放端口(例如:比如我修改ssh远程连接端口是223,则需要开放这个端口)
# firewall-cmd —add-port=223/tcp
# 添加永久开放的端口(例如:223端口)
# firewall-cmd —add-port=223/tcp —permanent
# 关闭临时端口
# firewall-cmd —remove-port=80/tcp
# 关闭永久端口
# firewll-cmd —remove-port=80/tcp —permanent
# 配置结束后需要输入重载命令并重启防火墙以生效配置
# firewall-cmd —reload
# systemctl restart firewalld
简易,常用
firewall-cmd —state //查看防火墙状态
systemctl status firewalld //查看防火墙状态
systemctl stop firewalld //关闭防火墙
systemctl start firewalld //开放防火墙
重启防火墙
firewall-cmd —reload
查看已经开放的临时端口:
firewall-cmd —list-ports
firewall-cmd —add-port=80/tcp //开放临时端口
,重启后失效
查看已经开放的永久端口:
firewall-cmd —list-ports —permanent
firewall-cmd —add-port=80/tcp —permanent //添加永久端口
若有收获,就点个赞吧
0 人点赞
