停止firewall
1 | systemctl stop firewalld.service |
禁止firewall开机启动·1
1 | systemctl disable firewalld.service |
查看默认防火墙状态
1 | firewall-cmd --state |
(关闭后显示notrunning,开启后显示running)
查看防火墙状态
systemctl status firewalld.service
启动防火墙
systemctl start firewalld.service
关闭防火墙
systemctl stop firewalld.service
##Add
firewall-cmd –permanent –zone=public –add-port=80/tcp
firewall-cmd –permanent –zone=public –add-port=443/tcp
firewall-cmd –permanent –zone=public –add-port=22/tcp
##Remove
firewall-cmd –permanent –zone=public –remove-port=80/tcp
##Reload
firewall-cmd –reload
查看所有打开的端口:
firewall-cmd –list-port
firewall-cmd –zone=public –list-ports
http://www.centoscn.com/CentOS/Intermediate/2016/0602/7348.html
CentOS7 的防火墙配置跟以前版本有很大区别,经过大量尝试,终于找到解决问题的关键
CentOS7这个版本的防火墙默认使用的是firewall,与之前的版本使用iptables不一样。按如下方便配置防火墙:
1、关闭防火墙:sudo systemctl stop firewalld.service
2、关闭开机启动:sudo systemctl disable firewalld.service
3、安装iptables防火墙
执行以下命令安装iptables防火墙:sudo yum install iptables-services
4、配置iptables防火墙,打开指定端口(具体跟以前版本一样,网上介绍很多,这里不多介绍了)
5. 设置iptables防火墙开机启动:sudo systemctl enable iptables