1、基础命令
查看防火墙的状态
systemctl status firewalld
关闭防火墙
systemctl stop firewalld
启动防火墙
systemctl start firewalld
开机禁用防火墙
systemctl disable firewalld
查看防火墙是否开机启动
systemctl is-enabled firewalld
查看已启动的服务列表
systemctl list-unit-files |grep enable
2、开通端口策略
添加postgresql的5432端口
firewall-cmd --add-service=postgresql --permanent
firewall-cmd --zone=public --add-port=5432/tcp --permanent
firewall-cmd --reload
查看防火墙的5432端口是否开放
firewall-cmd --query-port=5432/tcp
查看防火墙开放端口
firewall-cmd --zone=public --list-ports