Service:
1. Install|Uninstall
yum install name (yum list|less)
yum groupinstall name(yum grouplist name)
2. service name start|stop|restart|status
/etc/init.d/name start|stop|restart|status
3. chkconfig name on|off
chkconfig --level 35 name on|off
chkconfig|chkconfig --list
4. Selinux
vim /etc/sysconfig/selinux|vim /etc/selinux/config
getenforce
setenforce 0|1
getsebool -a|less
setsebool ftp_home_dir=0|1
setsebool ftp_home_dir=on|off
chcon -R -t etc_t /tmp/etc
chcon -R --reference=/etc /tmp/etc
restorecon -R /etc
5.Iptables
service iptables start
chkconfig iptables on
iptables -F
iptables -X
iptables -t filter -L -n -v
iptables -t filter -F
iptables -t filter -X
iptables -t filter -A INPUT -s 10.1.16.254 -d 10.1.16.250 -p icmp -j DROP
service iptable save
iptables -L -n
iptables -t filter -A INPUT -s 10.1.16.254 -d 10.1.16.250 -p tcp --dport 22 -j DROP
iptables -t filter -D INPUT -s 10.1.16.101 -d 10.1.16.250 -p icmp -j DROP
iptables -t filter -I INPUT -s 10.1.16.101 -d 10.1.16.250 -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -s 10.1.16.104 -d 10.1.16.250 -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -s 10.1.16.102 -d 10.1.16.250 -p tcp --dport 22 -j ACCEPT
iptables -t filter -A INPUT -d 10.1.16.250 -p tcp --dport 22 -j DROP
==iptables -t filter -A INPUT ! -s 10.1.16.101 -d 10.1.16.250 -p tcp --dport 22 -j DROP
iptables -t filter -I INPUT 3 -s 10.1.16.105 -d 10.1.16.250 -p tcp --dport 22 -j ACCEPT
iptables -t filter -D INPUT 3
service iptables save*********************
iptables -L -v -n
转载于:https://blog.51cto.com/utrace/1551870
410
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
