1. centos7默认 firewalld
-
查看firewalld状态
systemctl status firewalld出现Active: active (running)切高亮显示则表示是启动状态。
出现 Active: inactive (dead)灰色表示停止,看单词也行。
-
启动firewall
systemctl start firewalld.service -
停止firewall
systemctl stop firewalld.service -
禁止firewall开机启动
systemctl disable firewalld.service -
查看默认防火墙状态(关闭后显示notrunning,开启后显示running)
firewall-cmd --state
2. iptables常用命令
- 查看状态
service iptables status - 启动
service iptables start - 重启
service iptables restart - 停止
service iptables stop - 永久关闭
chkconfig iptables off - 永久关闭后重启
chkconfig iptables on
3. iptables安装(先关闭firewalld)
- 安装
yum install iptables-services - 修改配置
vi /etc/sysconfig/iptables
