最近公司申请了一个固定IP我们的服务器就可以外网访问了,为了安全我们不得不开防火墙,所以就有了怎么配置防火墙,及常用的一些命令
-
查看端口使用情况
[root@jjckj cblog_jar]# ss -tanl State Recv-Q Send-Q Local Address:Port Peer Address:Port LISTEN 0 5 127.0.0.1:5910 *:* LISTEN 0 2 127.0.0.1:3350 *:* LISTEN 0 128 *:22 *:* LISTEN 0 128 127.0.0.1:631 *:* LISTEN 0 100 127.0.0.1:25 *:* LISTEN 0 128 *:443 *:* LISTEN 0 100 :::9191 :::* LISTEN 0 100 :::8040 :::* LISTEN 0 128 :::5672 :::* LISTEN 0 128 :::25672 :::* LISTEN 0 128 :::27017 :::* LISTEN 0 100 :::2122 :::* LISTEN 0 100 :::8010 :::* LISTEN 0 128 :::3306 :::* LISTEN 0 100 :::2123 :::* LISTEN 0 100 :::7979 :::* LISTEN 0 128 :::6379 :::* LISTEN 0 128 :::61613 :::* LISTEN 0 100 :::9999 :::* LISTEN 0 128 :::111 :::* LISTEN 0 128 :::80 :::* LISTEN 0 100 :::8020 :::* LISTEN 0 128 :::22 :::* LISTEN 0 128 ::1:631 :::* LISTEN 0 100 :::8089 :::* LISTEN 0 100 :::8090 :::* LISTEN 0 128 :::443 :::* LISTEN 0 100 :::8030 :::*
-
查看指定端口使用状况
[root@jjckj cblog_jar]# ss -lntpd | grep :80 tcp LISTEN 0 100 :::8040 :::* users:(("java",pid=88824,fd=272)) tcp LISTEN 0 100 :::8010 :::* users:(("java",pid=94742,fd=284)) tcp LISTEN 0 128 :::80 :::* users:(("docker-proxy",pid=8326,fd=4)) tcp LISTEN 0 100 :::8020 :::* users:(("java",pid=129252,fd=284)) tcp LISTEN 0 100 :::8089 :::* users:(("java",pid=64764,fd=316)) tcp LISTEN 0 100 :::8090 :::* users:(("java",pid=151088,fd=238)) tcp LISTEN 0 100 :::8030 :::* users:(("java",pid=48350,fd=286))
[root@jjckj cblog]# netstat -lnp|grep 88 tcp6 0 0 :::8040 :::* LISTEN 88824/java tcp6 0 0 :::8090 :::* LISTEN 151088/java tcp6 0 0 :::1883 :::* LISTEN 140451/docker-proxy unix 2 [ ACC ] STREAM LISTENING 3005348822 48350/java /tmp/.java_pid48350.tmp unix 2 [ ACC ] STREAM LISTENING 88371 20219/Xvnc /tmp/.X11-unix/X10 unix 2 [ ACC ] STREAM LISTENING 3032752881 129252/java /tmp/.java_pid129252.tmp unix 2 [ ACC ] STREAM LISTENING 2932500296 88824/java /tmp/.java_pid88824.tmp unix 2 [ ACC ] STREAM LISTENING 88370 20219/Xvnc @/tmp/.X11-unix/X10 unix 2 [ ACC ] STREAM LISTENING 88390 20467/dbus-daemon @/tmp/dbus-zsGe5l6DVF unix 2 [ ACC ] STREAM LISTENING 61088 10144/vmware-hostd /var/run/vmware/0/28580000_10144/ha-nfcssl-fd unix 2 [ ACC ] STREAM LISTENING 42943 6988/gssproxy /run/gssproxy.sock unix 2 [ ACC ] STREAM LISTENING 2933465112 151088/java /tmp/.java_pid151088.tmp unix 2 [ ACC ] STREAM LISTENING 2552812950 141833/containerd-s @/containerd-shim/moby/c5407e25b773c88c531510ec5804bac5fead77bc78bb7ed946c6d9b14073e0c5/shim.sock unix 2 [ ACC ] STREAM LISTENING 2552770372 139561/containerd-s @/containerd-shim/moby/fe0d40e4213b21ac1477465ddee8d0dbcef8857501b8cc96fe4248e274b5ce83/shim.sock unix 2 [ ACC ] STREAM LISTENING 42942 6988/gssproxy /var/lib/gssproxy/default.sock
-
查看进程的详细信息
[root@jjckj cblog]# ps 88824 PID TTY STAT TIME COMMAND 88824 ? Sl 42:13 java -jar /data/springboot/cultural-tourism/brigade_monitor_jar/brigade-monitor.jar -Dapplication=monitor -Dbasedir=/data/springboot/cultural-tourism/brigade_
-
杀掉进程,重新启动apache
#杀掉编号为1777的进程(请根据实际情况输入) kill -9 1777 #启动apache service httpd start / systemctl start httpd
-
清除缓存
echo 3 > /proc/sys/vm/drop_caches