1.查看firewall服务状态
systemctl status firewalld
2.查看firewall的状态
firewall-cmd --state
3.开启、重启、关闭防火墙服务
service firewalld start
service firewalld restart
service firewalld stop
4.查看防火墙规则
firewall-cmd --list-all
5.查询、开放、关闭端口
firewall-cmd --query-port=8080/tcp
firewall-cmd --permanent --add-port=80/tcp
firewall-cmd --permanent --remove-port=8080/tcp
6.重新加载防火墙规则(修改配置后要重新加载)
firewall-cmd --reload
7.开机自启
systemctl enable firewalld.service
8.添加/删除rule
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="192.168.12.12" port protocol="tcp" port="8080" accept"
firewall-cmd --permanent --remove-rich-rule="rule family="ipv4" source address="192.168.1.12" port protocol="tcp" port="8080" accept"