LINUX 防火墙管理

一、防火墙管理
1.查看防火墙状态

systemctl  status firewalld

2.重新启动防火墙

systemctl  restart  firewalld

3.关闭防火墙

systemctl stop  firewalld

4.永久关闭防火墙

sudo  service iptables stop

5.查询防火墙放行端口

firewall-cmd --list-ports

6.添加放行端口

firewall-cmd --add-port=22/tcp --permanent

7.删除已添加端口

firewall-cmd  --remove-port=8084/tcp --permanent --zone=public

8.添加禁止端口

firewall-cmd  --remove-port=445/tcp --permanent --zone=public

9.添加端口放行地址

firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="192.167.100.146" port protocol="tcp" port="1521" accept"

10.删除端口放行地址

firewall-cmd --permanent --remove-rich-rule="rule family="ipv4" source address="172.23.26.29" port protocol="tcp" port="1521" accept"

11.查看添加

firewall-cmd  --list-rich-rules

12.重载防火墙

firewall-cmd --reload