开放系统端口号
a. /sbin/iptables -I INPUT -p tcp --dport 8181 -j ACCEPT
b. /etc/rc.d/init.d/iptables save
c. 可以通过以下命令查看端口的状态:
/etc/init.d/iptables status
[root@localhost qpid]# /etc/init.d/iptables status
Table: filter
Chain INPUT (policy ACCEPT)
num target prot opt source destination
1 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5672
2 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8181
3 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3036
4 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
5 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0
6 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
7 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
8 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
查看端口使用情况
[root@localhost ~]# netstat -an | grep 5672
tcp 0 0 0.0.0.0:5672 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:54601 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:54597 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:54598 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54595 ESTABLISHED
tcp 0 0 172.16.8.40:5672 172.16.17.58:37440 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54596 ESTABLISHED
tcp 0 0 127.0.0.1:54596 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54599 ESTABLISHED
tcp 0 0 127.0.0.1:54594 127.0.0.1:5672 ESTABLISHED
tcp 0 0 172.16.8.40:5672 172.16.13.43:27250 ESTABLISHED
tcp 0 0 172.16.8.40:5672 172.16.13.45:56504 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54600 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54601 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54594 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54598 ESTABLISHED
tcp 0 0 172.16.8.40:5672 172.16.13.26:59208 ESTABLISHED
tcp 0 0 127.0.0.1:54600 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54597 ESTABLISHED
tcp 0 0 127.0.0.1:5672 127.0.0.1:54325 ESTABLISHED
tcp 0 0 127.0.0.1:54595 127.0.0.1:5672 ESTABLISHED
tcp 0 0 127.0.0.1:54599 127.0.0.1:5672 ESTABLISHED
tcp 0 0 :::5672 :::* LISTEN
tcp 0 0 ::ffff:127.0.0.1:54325 ::ffff:127.0.0.1:5672 ESTABLISHED
[root@localhost ~]#
/
PS:
[root@localhost ~]# service iptables stop
iptables: Setting chains to policy ACCEPT: filter [ OK ]
iptables: Flushing firewall rules: [ OK ]
iptables: Unloading modules: [ OK ]
[root@localhost ~]# service iptables start
iptables: Applying firewall rules: [ OK ]