centos 6.8 [centos6.5]:
查看chkconfig列表里面是否有iptables的服务:
chkconfig | grep iptables
查看防火墙状态:
service iptables status OR /etc/init.d/iptables status
临时关闭防火墙:
service iptables stop OR /etc/init.d/iptables stop
重启防火墙:
service iptables restart OR /etc/init.d/iptables restart
启动防火墙:
service iptables start OR /etc/init.d/iptables start
永久关闭防火墙:
chkconfig iptables off
永久关闭后启用:
chkconfig iptables on
centos 7:[centos7.0默认使用firewall作为防火墙]
firewall:
查看默认防火墙状态:(关闭后显示notrunning,开启后显示running)
firewall-cmd --state
查看已经开放的端口:
firewall-cmd --list-ports
开启端口:
firewall-cmd --zone=public --add-port=80/tcp --permanent 命令含义: –zone #作用域 –add-port=80/tcp #添加端口,格式为:端口/通讯协议 –permanent #永久生效,没有此参数重启后失效
重启防火墙:
firewall-cmd --reload #重启firewall
systemctl:
查看防火墙状态:
systemctl list-unit-files|grep firewalld.service #disabled防火墙处于关闭状态 OR systemctl status firewalld.service #dead防火墙处于关闭状态
停止firewall:
systemctl stop firewalld.service
启动firewall:
systemctl start firewalld.service
重启firewall:
systemctl restart firewalld.service
开机启动firewall:
systemctl enable firewalld.service
禁止firewall开机启动:
systemctl disable firewalld.service
查看firewall是否开机启动:
systemctl is-enabled firewalld.service;echo $?