1、firewall-cmd –permanent –add-masquerade 允许IP伪装,–permanent是断电后重启仍生效。
2、firewall-cmd –permanent –zone=public –add-forward-port=port=8087:proto=tcp:toaddr=10.60.73.146:toport=7025 添加端口转发
3、firewall-cmd –reload #重启firewall,使添加端口转发生效
4、firewall-cmd –permanent –zone=public –remove-forward-port=port=8087:proto=tcp:toaddr=10.60.73.146:toport=7025 去除端口转发配置,去除后也要重启firewall
5、firewall-cmd –permanent –zone=public –query-forward-port=port=8087:proto=tcp:toaddr=10.60.73.146:toport=7025 查看是否存在端口转发配置