Centos 7 firewall firewalld open port 80

Others 2022-04-22 11:35:40 views: 0

If you are using the iptables firewall, please see the following article

Centos 7 firewall iptables open specified port (80) and set ftp method

open port 80

copy code

firewall-cmd --zone=public --add-port=80/tcp --permanent

Success appears to indicate that the addition was successful

Command meaning:

--zone #scope

--add-port=80/tcp #Add port, the format is: port/communication protocol

--permanent #Permanent effect, invalid after restart without this parameter

restart firewall

copy code

systemctl restart firewalld.service

1. Run, stop, disable firewalld

Start: # systemctl start firewalld

View status: # systemctl status firewalld or firewall-cmd --state

停止:# systemctl disable firewalld

Disable: # systemctl stop firewalld

 

2. Configure firewalld

View version: $ firewall-cmd --version

See help: $ firewall-cmd --help

View settings:

Show status: $ firewall-cmd --state

View zone information: $ firewall-cmd --get-active-zones

View the zone to which the specified interface belongs: $ firewall-cmd --get-zone-of-interface=eth0

Deny all packets: # firewall-cmd --panic-on

Cancel the denied status: # firewall-cmd --panic-off

Check for rejection: $ firewall-cmd --query-panic

 

Update firewall rules: # firewall-cmd --reload

# firewall-cmd --complete-reload

The difference between the two is that the first one does not need to be disconnected, it is one of the firewalld features to dynamically add rules, and the second one needs to be disconnected, similar to restarting the service

 

Add the interface to the zone, the default interface is public

# firewall-cmd --zone=public --add-interface=eth0

Permanent effect plus --permanent then reload firewall

 

Set default interface zone

# firewall-cmd --set-default-zone=public

Takes effect immediately without restarting

 

Open the port (it seems that this is the most commonly used)

View all open ports:

# firewall-cmd --zone=dmz --list-ports

Add a port to the zone:

# firewall-cmd --zone=dmz --add-port=8080/tcp

For permanent effect, the method is the same as above

 

Opening a service is similar to visualizing the port. The service needs to be added in the configuration file. There is a services folder in the /etc/firewalld directory. This is not described in detail. For details, please refer to the documentation.

# firewall-cmd --zone=work --add-service=smtp

 

remove service

# firewall-cmd --zone=work --remove-service=smtp

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=324992460&siteId=291194637
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com