- #--------------查看服务器端口状态--------------------
- [root@zjxl-2etc]#/etc/init.d/iptablesstatus
- Table:filter
- ChainINPUT(policyDROP)
- numtargetprotoptsourcedestination
- 1ACCEPTall--0.0.0.0/00.0.0.0/0
- 2ACCEPTicmp--0.0.0.0/00.0.0.0/0
- 3ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:22
- 4ACCEPTtcp--0.0.0.0/00.0.0.0/0multiportdports20:30,80,110,443,3300:3500,5700:6100,7001,8000:13000
- 5ACCEPTall--0.0.0.0/00.0.0.0/0stateRELATED,ESTABLISHED
- ChainFORWARD(policyACCEPT)
- numtargetprotoptsourcedestination
- ChainOUTPUT(policyACCEPT)
- numtargetprotoptsourcedestination
- #----------------------------发现没有开启6379和6380端口--------------------------------
- #----------------------------------开启6379端口---------------------------------
- [root@zjxl-2etc]#/sbin/iptables-IINPUT-ptcp--dport6379-jACCEPT
- [root@zjxl-2etc]#/etc/init.d/iptablesstatus
- Table:filter
- ChainINPUT(policyDROP)
- numtargetprotoptsourcedestination
- 1ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:6379
- 2ACCEPTall--0.0.0.0/00.0.0.0/0
- 3ACCEPTicmp--0.0.0.0/00.0.0.0/0
- 4ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:22
- 5ACCEPTtcp--0.0.0.0/00.0.0.0/0multiportdports20:30,80,110,443,3300:3500,5700:6100,7001,8000:13000
- 6ACCEPTall--0.0.0.0/00.0.0.0/0stateRELATED,ESTABLISHED
- ChainFORWARD(policyACCEPT)
- numtargetprotoptsourcedestination
- ChainOUTPUT(policyACCEPT)
- numtargetprotoptsourcedestination
- #----------------------------------开启6380端口---------------------------------
- [root@zjxl-2etc]#/sbin/iptables-IINPUT-ptcp--dport6380-jACCEPT
- #------------------------------查看服务器端口状态---------------------------
- [root@zjxl-2etc]#/etc/init.d/iptablesstatus
- Table:filter
- ChainINPUT(policyDROP)
- numtargetprotoptsourcedestination
- 1ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:6380
- 2ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:6379
- 3ACCEPTall--0.0.0.0/00.0.0.0/0
- 4ACCEPTicmp--0.0.0.0/00.0.0.0/0
- 5ACCEPTtcp--0.0.0.0/00.0.0.0/0tcpdpt:22
- 6ACCEPTtcp--0.0.0.0/00.0.0.0/0multiportdports20:30,80,110,443,3300:3500,5700:6100,7001,8000:13000
- 7ACCEPTall--0.0.0.0/00.0.0.0/0stateRELATED,ESTABLISHED
- ChainFORWARD(policyACCEPT)
- numtargetprotoptsourcedestination
- ChainOUTPUT(policyACCEPT)
- numtargetprotoptsourcedestination
- #----------------------------------保存修改配置---------------------------------
- [root@zjxl-2etc]#/etc/rc.d/init.d/iptablessave
- Savingfirewallrulesto/etc/sysconfig/iptables:[OK]
- [root@zjxl-2etc]#
问题描述:
在Centos服务器上装好Redis缓存服务后,其他机器访问不了,提示连接超时。,郁闷,在网上找到解决方案:
/sbin/iptables-IINPUT-ptcp--dport6379 -jACCEPT
/sbin/iptables-IINPUT-ptcp--dport6380 -jACCEPT
然后保存:
/etc/rc.d/init.d/iptablessave
这样重启计算机后,CentOS防火墙默认已经开放了6379和6380端口。
这里应该也可以不重启计算机:
/etc/init.d/iptablesrestart
查看CentOS防火墙信息:
/etc/init.d/iptablesstatus
关闭CentOS防火墙服务:
/etc/init.d/iptablesstop
永久关闭:
chkconfig–level35iptablesoff
解决方案来源:http://hi.baidu.com/xiyi2008/item/345215b90948c4d085dd7978