防火墙
#查看防火墙状态:
systemctl status firewalld 或者firewall-cmd --state
#开启防火墙:
systemctl start firewalld
#暂时关闭防火墙:
systemctl stop firewalld
#永久关闭防火墙:
systemctl disable firewalld
#在开机时启用一个服务:
systemctl enable firewalld.service
#在开机时禁用一个服务:
systemctl disable firewalld.service
#查看服务是否开机启动:
systemctl is-enabled firewalld.service
#查看已启动的服务列表:
systemctl list-unit-files|grep enabled
#查看启动失败的服务列表:
systemctl --failed
#查询端口是否开放:
firewall-cmd --query-port=80/tcp
#开放80端口:
firewall-cmd --permanent --add-port=80/tcp
#移除端口:
firewall-cmd --permanent --remove-port=8080/tcp
#查看开放了那些端口:
firewall-cmd --list-ports
#重启防火墙(修改配置后要重启防火墙):
firewall-cmd --reload
防火墙操作:
查看防火墙状态(systemctl status firewalld、firewall-cmd --state)
暂时关闭防火墙(systemctl stop firewalld)
永久关闭防火墙(systemctl disable firewalld)
开启防火墙(systemctl start firewalld)
开放指定端口(firewall-cmd --zone=public--add-port=8080/tcp --permanent)
关闭指定端口(firewall-cmd --zone=public --remove-port=8080/tcp --permanent)
立即生效(firewall-cmd --reload)
查看开放的端口(firewall-cmd --zone=public --list-ports)