启动防火墙
systemctl start firewalld
关闭防火墙
systemctl stop firewalld
重启防火墙
systemctl restart firewalld
加入开机启动
systemctl enable firewalld
禁止开机启动
systemctl disable firewalld
开放端口
firewall-cmd --zone=public --add-port=3306/tcp --permanent
添加一组连续的端口(释放对外提供端口:3306、3307、3308)
firewall-cmd --zone=public --add-port=3306-3308/tcp --permanent
关闭端口
firewall-cmd --zone=public --remove-port=80/tcp --permanent
重新加载防火墙
firewall-cmd --reload
查看某端口是否开放
firewall-cmd --query-port=3306/tcp
查看端口开启列表
firewall-cmd --list-port