centOS6.9 和 centOS7 以上的 防火牆的關閉以及開啓

centOS6 和 centOS7 的防火牆管理命令 不一樣。

以下是centOS7的命令

查看防火牆狀態

[root@localhost ~]# firewall-cmd --state
running

關閉防火牆
[root@localhost ~]# systemctl stop firewalld.service 
 

開啓防火牆

[root@localhost ~]# systemctl start firewalld.service 

----------------------------------------------------------------------------------------

以下是 centOS6 的命令

一、第一種：使用 service 命令

查看防火牆狀態：service iptables status  ,

記得在CentOS6.9中是輸入iptables，網上有些教程使用service iptable status 命令並不可行。

[root@insurance ~]# service iptables status
Table: filter
Chain INPUT (policy ACCEPT)
num  target     prot opt source               destination         
1    ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:6379 

Chain FORWARD (policy ACCEPT)
num  target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
num  target     prot opt source               destination    

關閉防火牆：service iptables stop

[root@insurance ~]# service iptables stop
iptables: Setting chains to policy ACCEPT: filter          [  OK  ]
iptables: Flushing firewall rules:                         [  OK  ]
iptables: Unloading modules:                               [  OK  ]
[root@insurance ~]# 

打開防火牆：service iptables start

[root@insurance ~]# service iptables start
iptables: Applying firewall rules:                         [  OK  ]
[root@insurance ~]# 

總結:

打開防火牆：service iptables start

關閉防火牆：service iptables stop

查看防火牆狀態：service iptables status

 

二、第二種：/etc/init.d/iptables 進行操作

查看防火牆狀態：/etc/init.d/iptables status

[root@insurance ~]# /etc/init.d/iptables status
Table: filter
Chain INPUT (policy ACCEPT)
num  target     prot opt source               destination         
1    ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           tcp dpt:6379 

Chain FORWARD (policy ACCEPT)
num  target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
num  target     prot opt source               destination         

[root@insurance ~]# 

關閉防火牆：/etc/init.d/iptables stop（這是臨時關閉，關閉的是當前運行的防火牆，重啓之後防火牆又會啓動，因爲它是開機自啓動的）開機自啓動的，它相當於/etc/init.d/iptables start

[root@insurance ~]# /etc/init.d/iptables stop
iptables: Setting chains to policy ACCEPT: filter          [  OK  ]
iptables: Flushing firewall rules:                         [  OK  ]
iptables: Unloading modules:                               [  OK  ]
[root@insurance ~]# 

開啓防火牆

[root@insurance ~]# /etc/init.d/iptables start
iptables: Applying firewall rules:                         [  OK  ]
[root@insurance ~]# 

三、需要改爲開機不啓動，使用chkconfig命令

永久開啓防火牆： chkconfig iptables on

永久關閉防火牆：chkconfig iptables off