安裝防火牆
安裝firewalld
$ yum install -y firewalld
啓動
$ systemctl start firewalld
自啓動
$ systemctl enable firewalld
添加端口
$ firewall-cmd --zone=public --add-port=8080/tcp --permanent
$ firewall-cmd --zone=public --add-port=8000-9000/tcp --permanent
或指定訪問IP地址,不指定端口和協議則全端口,如:firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source address=xxx.xxx.xxx.xxx accept"
$ firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source address=xxx.xxx.xxx.xxx port protocol=tcp port=8080 accept"
$ firewall-cmd --reload
刪除:firewall-cmd --zone=public --remove-port=8080/tcp --permanent
阻止:firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source address=xxx.xxx.xxx.xxx reject"
更新規則:firewall-cmd --reload
$ firewall-cmd --zone=public --list-ports
$ firewall-cmd --list-ports
查看配置規則
$ cat /etc/firewalld/zones/public.xml