view list of all ports
firewall-cmd --zone=public --list-ports
View port status
firewall-cmd --zone=public --query-port=1883/tcp
open port
firewall-cmd --zone=public --add-port=1883/tcp --permanent
//Set TCP
firewall-cmd --zone=public --add-port=80/tcp --permanent
firewall-cmd --zone=public --add-port=443/tcp --permanent
//Set UDP
firewall-cmd --zone=public --add-port=80/udp --permanent
firewall-cmd --zone=public --add-port=443/udp --permanent
close port
firewall-cmd --zone=public --remove-port=80/tcp --permanent
Close all IP access to port 80:
iptables -I INPUT -p tcp --dport 80 -j DROP
Specify an IP to access port 80:
iptables -I INPUT -s 192.168.1.83 -p tcp --dport 80 -j ACCEPT
Specify an IP segment to access port 80:
iptables -I INPUT -s 192.168.1.0/24 -p tcp --dport 80 -j ACCEPT
reset configuration
firewall-cmd --reload
list all configurations
firewall-cmd --list-all
self-start
systemctl enable firewalld.service
systemctl disable firewalld.service