centos7 some operations on the firewall

Firewall-related

# 检查防火墙状态
systemctl status firewalld
# 开启防火墙
systemctl start firewalld
# 关闭防火墙
systemctl stop firewalld

Firewall port-related

# 防火墙开放端口
firewall-cmd --add-port=80/tcp --permanent
# 重新加载配置，使其生效
firewall-cmd --reload
# 查看开放的端口
firewall-cmd --list-ports

Firewall port forwarding

# 设置防火墙端口转发，访问本机9092的流量会被转发到172.16.0.218:9092
firewall-cmd --add-masquerade --permanent
firewall-cmd --add-forward-port=port=9092:proto=tcp:toport=9092:toaddr=172.16.0.218 --permanent
# 重新加载配置，使其生效
firewall-cmd --reload
# 查看转发端口
firewall-cmd --list-forward-ports