centos防火墙操作

查看防火墙状态

[root@localhost ~]# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
   Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled; vendor preset: enabled)
   Active: inactive (dead) since 一 2022-02-14 22:04:12 EST; 4min 34s ago
     Docs: man:firewalld(1)
  Process: 21040 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=0/SUCCESS)
 Main PID: 21040 (code=exited, status=0/SUCCESS)

2月 14 22:01:50 localhost.localdomain systemd[1]: Starting firewalld - dynamic firewall daemon...
2月 14 22:01:50 localhost.localdomain systemd[1]: Started firewalld - dynamic firewall daemon.
2月 14 22:01:51 localhost.localdomain firewalld[21040]: WARNING: AllowZoneDrifting is enabled. This is considered an insecure configuration option. It will be removed in a future release. Please consi...abling it now.
2月 14 22:04:11 localhost.localdomain systemd[1]: Stopping firewalld - dynamic firewall daemon...
2月 14 22:04:12 localhost.localdomain systemd[1]: Stopped firewalld - dynamic firewall daemon.
Hint: Some lines were ellipsized, use -l to show in full.

开启防火墙

[root@localhost ~]# systemctl start firewalld

限制ip访问指定端口

nfs

[root@localhost ~]# systemctl start firewalld
[root@localhost ~]# firewall-cmd  --permanent    --add-port=111/tcp
success
[root@localhost ~]# firewall-cmd  --permanent    --add-port=111/udp
success
[root@localhost ~]# firewall-cmd  --permanent    --add-port=2049/tcp
success
[root@localhost ~]# firewall-cmd  --permanent    --add-port=2049/udp
success
posted @ 2025-01-02 09:40  小小青年  阅读(20)  评论(0)    收藏  举报