(1)获取活动的区域
[root@baomw-centos1 run]# firewall-cmd --get-active-zones
(2)开启某个端口
[root@baomw-centos1 run]# firewall-cmd --zone=public --add-port=3306/tcp --permanent
(3)使用命令加载设置
[root@baomw-centos1 run]# firewall-cmd --reload
(4)查询端口状态
[root@baomw-centos1 run]# firewall-cmd --query-port=3306/tcp