参考:https://www.cnblogs.com/jinanxiaolaohu/p/11280780.html
1. 首先不能关防火墙
systemctl enable firewalld
systemctl restart firewalld
systemctl status firewalld
2. 永久开放端口访问
firewall-cmd --permanent --add-port=80/tcp
firewall-cmd --permanent --add-port=443/tcp
firewall-cmd --permanent --add-port=18080/tcp
firewall-cmd --permanent --add-port=10128/tcp
firewall-cmd --permanent --add-port=10129/tcp
firewall-cmd --permanent --add-port=10130/tcp
firewall-cmd --permanent --add-port=10131/tcp
firewall-cmd --permanent --add-port=10080/tcp
firewall-cmd --permanent --add-port=19229/tcp
firewall-cmd --permanent --add-port=19339/tcp
3. 添加端口转发
firewall-cmd --permanent --add-forward-port=port=80:proto=tcp:toport=9091
将 本地服务器 3000 端口的内容 通过 80 端口暴露出来 提供服务
firewall-cmd --permanent --add-forward-port=port=443:proto=tcp:toport=9443
将 本地服务器 9443 端口的内容 通过 443 端口暴露出来 提供服务
4. 重新reload
firewall-cmd --reload
systemctl status firewalld
firewall-cmd --list-all
[root@erpbackup sbin]# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled)
Active: active (running) since 四 2020-07-02 15:39:31 CST; 3min 46s ago
Docs: man:firewalld(1)
Main PID: 3196 (firewalld)
CGroup: /system.slice/firewalld.service
└─3196 /usr/bin/python2 -Es /usr/sbin/firewalld --nofork --nopid
7月 02 15:39:31 erpbackup systemd[1]: Stopped firewalld - dynamic firewall daemon.
7月 02 15:39:31 erpbackup systemd[1]: Starting firewalld - dynamic firewall daemon...
7月 02 15:39:31 erpbackup systemd[1]: Started firewalld - dynamic firewall daemon.
[root@erpbackup sbin]# firewall-cmd --list-all
public
target: default
icmp-block-inversion: no
interfaces:
sources:
services: dhcpv6-client ssh
ports: 80/tcp 443/tcp 18080/tcp 10128/tcp 10129/tcp 10130/tcp 10131/tcp
protocols:
masquerade: no
forward-ports: port=80:proto=tcp:toport=9091:toaddr=
port=443:proto=tcp:toport=9443:toaddr=
source-ports:
icmp-blocks:
rich rules:
[root@erpbackup sbin]#
参考:https://blog.csdn.net/lvqingyao520/article/details/81075094
1、firewalld的基本使用
启动: systemctl start firewalld
查看状态: systemctl status firewalld
停止: systemctl disable firewalld
禁用: systemctl stop firewalld