1.查看防火墙的状态:
systemctl status firewalld
2.开启防火墙:
systemctl start firewalld
3.关闭防火墙:
systemctl stop firewalld
4.设置开机启用防火墙:
systemctl enable firewalld
5.设置开机禁用防火墙:
systemctl disable firewalld
6添加放行80端口:
firewall-cmd --zone=public --add-port=80/tcp --permanent
命令含义:
#–zone 作用域
#–add-port=80/tcp #添加端口,格式为:端口号/通讯协议
#–permanent #永久生效,没有此参数重启后失效
7.移除80端口:
firewall-cmd --zone=public --remove-port=80/tcp --permanent
8.重启防火墙:(无论是添加还是移除,都需要重启一遍防火墙才能生效)
systemctl restart firewalld
9.查看当前防火墙已开放端口:
firewall-cmd --list-port
10.查看帮助
man firewall