开启防火墙
systemctl start firewalld
关闭防火墙
systemctl stop firewalld
systemctl disable firewalld
systemctl enable firewalld
重启防火墙
systemctl restart firewalld
重载规则
firewall-cmd --reload
查看已配置规则
firewall-cmd --list-all
防火墙端口开放
firewall-cmd --zone=public --add-port=5672/tcp --permanent
firewall-cmd --zone=public --remove-port=5672/tcp --permanent
firewall-cmd --reload
查看防火墙所有开放的端口
firewall-cmd --zone=public --list-ports
指定端口和ip访问
firewall-cmd --permanent --add-rich-rule="rule famil="ipv4" source address="192.168.137.139" port protocol="tcp" port="8080" accept"
移除指定端口和ip访问
firewall-cmd --permanent --remove-rich-rule="rule famil="ipv4" source address="192.168.137.139" port protocol="tcp" port="8080" accept"