1.查看防火墙状态:
systemctl status firewalld
systemctl start firewalld 启动防火墙
systemctl stop firewalld 关闭防火墙
systemctl restart firewalld 重启防火墙
2.查看已开放端口命令:
firewall-cmd --list-all
firewall-cmd --zone=public --query-port=3306/tcp 指定端口查看
3.新增防火墙开放端口:
firewall-cmd --zone=public --add-port=3306/tcp --permanent
firewall-cmd --zone=public --add-port=100-500/tcp --permanent 可自选范围
4.关闭防火墙端口:
firewall-cmd --zone=public --remove-port=8080/tcp --permanent
5.开放或关闭端口后需要重新加载防火墙:
firewall-cmd --reload