最近看firewall-cmd的man文档感觉不好记,就把常见的几个firewall命令记在了博客上。下面几个命令Firewall已经能满足大部分需求了
1:查看防火墙规则
firewall-cmd –list-all
2:重新加载防火墙
firewall-cmd –reload
3:永久放行80端口
firewall-cmd –add-port=80 –permanent
4:firewall临时放行http服务
firewall-cmd –add-service=http
5:firewall永久只允许173.1.3.12连接ssh
firewall-cmd –add-rich-rule ‘rule family=”ipv4″ source address=”173.1.3.12/32″ port port=”22″ protocol=”tcp” accept’ –permanent