zoukankan      html  css  js  c++  java

  • CentOS 7关闭firewalld启用iptables

    在CentOS7中,有很多CentOS 6中的常用服务发生了变化。

    其中iptables是其中比较大的一个。防火墙iptables被firewalld取代。

    本文将介绍,如果采用systemctl关闭firewalld,开启iptables。

    1.关闭firewalld

    [root@hwcentos70-01 system]# systemctl stop firewalld
[root@hwcentos70-01 system]# systemctl disable firewalld
[root@hwcentos70-01 system]# systemctl status firewalld
firewalld.service - firewalld - dynamic firewall daemon

Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled)

Active: inactive (dead)

Feb 26 13:48:00 hwcentos70-01 systemd[1]: Stopped firewalld - dynamic firewall daemon.

Feb 26 13:48:14 hwcentos70-01 systemd[1]: Starting firewalld - dynamic firewall daemon...

Feb 26 13:48:15 hwcentos70-01 systemd[1]: Started firewalld - dynamic firewall daemon.

Feb 26 13:49:23 hwcentos70-01 systemd[1]: Started firewalld - dynamic firewall daemon.

Feb 26 13:53:18 hwcentos70-01 systemd[1]: Stopping firewalld - dynamic firewall daemon...

Feb 26 13:53:18 hwcentos70-01 systemd[1]: Stopped firewalld - dynamic firewall daemon.

    2.开启iptables

    首先安装iptables:

    [root@hwcentos70-01 system]#yum install -y iptables-services
[root@hwcentos70-01 system]# systemctl enable iptables
ln -s '/usr/lib/systemd/system/iptables.service' '/etc/systemd/system/basic.target.wants/iptables.service'

[root@hwcentos70-01 system]# systemctl start iptables
[root@hwcentos70-01 system]# systemctl status iptables
iptables.service - IPv4 firewall with iptables

Loaded: loaded (/usr/lib/systemd/system/iptables.service; enabled)

Active: active (exited) since Fri 2016-02-26 13:54:45 UTC; 6s ago

Process: 55539 ExecStart=/usr/libexec/iptables/iptables.init start (code=exited, status=0/SUCCESS)

Main PID: 55539 (code=exited, status=0/SUCCESS)

Feb 26 13:54:45 hwcentos70-01 iptables.init[55539]: iptables: Applying firewall rules: [ OK ]

Feb 26 13:54:45 hwcentos70-01 systemd[1]: Started IPv4 firewall with iptables.

    此时iptables的命令都可以使用了:

    [root@hwcentos70-01 system]# iptables -L
Chain INPUT (policy ACCEPT)

target prot opt source destination

Chain FORWARD (policy ACCEPT)

target prot opt source destination

Chain OUTPUT (policy ACCEPT)

target prot opt source destination

[root@hwcentos70-01 system]# service iptables save
iptables: Saving firewall rules to /etc/sysconfig/iptables:[ OK ]
  • 相关阅读:
    [BZOJ2118/Luogu2371][国家集训队]墨墨的等式
    [BZOJ2742/Luogu4598][HEOI2012]Akai的数学作业
    [POJ3734]Blocks
    [BZOJ3028]食物
    [BZOJ1537/Luogu3431][POI2005]AUT-The Bus
    [BZOJ1452/Luogu4054][JSOI2009]Count计数问题
    [BZOJ1625][Usaco2007 Dec]宝石手镯
    [BZOJ2060/Luogu2996][USACO10NOV]拜访奶牛Visiting Cows
    React-Native style 中 justifyContent:'flex-end' 单独使用不工作
    IIS站点下,React重新刷新,404问题的解决
  • 原文地址:https://www.cnblogs.com/hengwei/p/5221930.html
Copyright © 2011-2022 走看看