Firewall-cmd
查看防火墙状态
systemctl status firewalldsystemctl status firewalld开启防火墙,设置开机自动启动
systemctl start firewalldsystemctl enable firewalldsystemctl start firewalldsystemctl enable firewalld关闭防火墙,设置开机不自动启动
systemctl stop firewalldsystemctl disable firewalldsystemctl stop firewalldsystemctl disable firewalld开放端口
开启 8080 端口
firewall-cmd --zone=public --add-port=8080/tcp --permanentfirewall-cmd --zone=public --add-port=8080/tcp --permanent--permanent 设置永久生效,否则重启后将失效。
重新载入防火墙设置,使之生效
firewall-cmd --reloadfirewall-cmd --reload查询端口是否开放
firewall-cmd --zone=public --query-port=8080/tcpfirewall-cmd --zone=public --query-port=8080/tcp查看打开的所有端口
firewall-cmd --zone=public --list-portsfirewall-cmd --zone=public --list-ports查看当前系统防火墙所有设置
firewall-cmd --list-allfirewall-cmd --list-all批量操作
firewall-cmd --zone=public --add-port=10000-10100/tcp --permanentfirewall-cmd --reloadfirewall-cmd --zone=public --add-port=10000-10100/tcp --permanentfirewall-cmd --reload限制端口
firewall-cmd --zone=public --remove-port=8080/tcp --permanentfirewall-cmd --zone=public --remove-port=8080/tcp --permanent--permanent 设置永久生效,否则重启后将失效。
重新载入防火墙设置,使之生效
firewall-cmd --reloadfirewall-cmd --reload批量操作
firewall-cmd --zone=public --remove-port=10000-10100/tcp --permanentfirewall-cmd --reloadfirewall-cmd --zone=public --remove-port=10000-10100/tcp --permanentfirewall-cmd --reload