- CentOS7默认使用的是firewalld而不是之前的iptables。需要先停用firewalld.
systemctl stop firewalld - 安装 iptables 服务
yum -y install iptables - 查看当前开放端口
iptables -nL --line-number - 修改iptables文件
vi /etc/sysconfig/iptables添加如下文字(开启80端口)
*filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT - 重启iptables服务
systemctl restart iptables