命令
查看状态:
systemctl status firewalld
启动:
systemctl start firewalld
开机启用:
systemctl enable firewalld
重启:
systemctl restart firewalld
端口命令
检测已打开的端口
firewall-cmd –list-all
开启端口
firewall-cmd –zone=public –add-port=80/tcp –permanent
firewall-cmd –zone=public –add-port=443/tcp –permanent
firewall-cmd –zone=public –add-port=3306/tcp –permanent
重启:
systemctl restart firewalld
检测已打开的端口
firewall-cmd –list-all
黑名单
firewall-cmd –permanent –add-rich-rule="rule family='ipv4' source address='ip' reject"