查看所有开放的端口 iptables -L -n
查看防火墙某个端口是否开放 firewall-cmd --query-port=3306/tcp
查看开放端口 firewall-cmd --zone=public --list-ports
开放防火墙端口3306 firewall-cmd --zone=public --add-port=3306/tcp --permanent
关闭指定端口 firewall-cmd --zone=public --remove-port=8080/tcp --permanent
注意:开放端口后要重启防火墙生效
重启防火墙
systemctl restart firewalld
启动: systemctl start firewalld
关闭: systemctl stop firewalld
查看状态: systemctl status firewalld
开机禁用: systemctl disable firewalld
开机启用: systemctl enable firewalld