linux命令-防火墙

1. 查看防火墙状态

firewall-cmd --state

systemctl status firewalld

2. 开启防火墙

systemctl start firewalld.service

3. 设置开机自启

systemctl enable firewalld.service

4. 临时关闭防火墙

systemctl stop firewalld.service

5.永久关闭防火墙

systemctl disable firewalld.service

6. 重启防火墙

service firewalld restart

firewall-cmd --reload

7. 开启指定端口

firewall-cmd --zone=public --add-port=9955/tcp --permanent
firewall-cmd --reload
# 添加防火墙端口之后需要重启防火墙

8. 批量开启端口

firewall-cmd --zone=public --add-port=4400-4600/udp --permanen

9. 关闭指定端口

firewall-cmd --zone=public --remove-port=80/tcp --permanent

10. 查看防火墙所有开放的端口

firewall-cmd --list-ports

11. 查看某一端口是否开放

firewall-cmd --query-port=80/tcp