firewalld开放端口
1.启动firewalld服务
systemctl start firewalld.service关闭firewalld服务
systemctl stop firewalld.service重启firewalld服务
systemctl restart firewalld.service查看firewalld状态
systemctl status firewalld.service开机自启firewalld
systemctl enable firewalld查看版本
firewall-cmd --version查看帮助
firewall-cmd --help显示状态
firewall-cmd --state查看当前所有规则
firewall-cmd --list-all查看所有打开的端口
firewall-cmd --zone=public --list-ports更新防火墙规则
firewall-cmd --reload添加开放端口
firewall-cmd --zone=public --add-port=80/tcp --permanent # permanent永久生效,没有此参数重启后失效查看端口是否开放
firewall-cmd --zone=public --query-port=80/tcp删除开放端口
firewall-cmd --zone=public --remove-port=80/tcp --permanent批量开放一段TCP端口
firewall-cmd --permanent --add-port=9001-9100/tcp开放IP的访问
firewall-cmd --permanent --add-source=192.168.1.1开放整个源IP段的访问
firewall-cmd --permanent --add-source=192.168.1.0/24移除IP访问
firewall-cmd --permanent --remove-source=192.168.1.1允许指定IP访问本机80端口
firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.1" port protocol="tcp" port="80" accept'禁止指定IP访问本机80端口
firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.1" port protocol="tcp" port="80" reject'移除允许指定IP访问本机80端口规则
firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.1.1" port protocol="tcp" port="80" accept'
注: 每次更改firewall规则后需重新加载(firewall-cmd --reload)
赏
支付宝打赏
微信打赏
支付宝打赏
微信打赏
赞赏是不耍流氓的鼓励