①防火墙状态检查
firewall-cmd --state
②关闭防火墙
systemctl stop firewalld.service
③开启防火墙
systemctl start firewalld.service
④关闭开机防火墙自启动
systemctl disable firewalld.service
⑤开启开机防火墙自启动
systemctl enable firewalld.service
⑥查看防火墙开放端口
firewall-cmd --list-ports
⑦防火墙对某一端口开放(即,对某端口防火墙不起作用)
firewall-cmd --zone=public --add-port=XXXX/tcp --permanent
⑧移除防火墙开放端口
firewall-cmd --zone=public --remove-port=XXXX/tcp --permanent
⑨重启防火墙服务:
firewall-cmd --reload