红帽初级-RHCSA_http题/为防火墙添加规则

监听端口
· 进入etc/httpd/conf/httpd.conf修改监听端口---添加82端口

修改防火墙规则
查看当前防火墙规则
firewall-cmd --list-all

[root@node1 ~]# firewall-cmd --list-all
public (active)
  target: default
  icmp-block-inversion: no
  interfaces: ens33
  sources: 
  services: cockpit dhcpv6-client ssh #服务
  ports:  #端口
  protocols: 
  forward: no
  masquerade: no
  forward-ports: 
  source-ports: 
  icmp-blocks: 
  rich rules: 

为防火墙添加httpd服务和82端口

firewall-cmd --add-port=82/tcp
firewall-cmd --add-service=http

重新加载防火墙
firewall-cmd --reload
再次查看
firewall-cmd --list-all

[root@node1 ~]# firewall-cmd --list-all
public (active)
  target: default
  icmp-block-inversion: no
  interfaces: ens33
  sources: 
  services: cockpit dhcpv6-client http ssh
  ports: 82/tcp
  protocols: 
  forward: no
  masquerade: no
  forward-ports: 
  source-ports: 
  icmp-blocks: 
  rich rules: 

使用semanage命令修改SELinux的安全规则
semanage port -a -t http_port_t -p tcp 82

systemctl start httpd
便可以启动了