查看防火墙状态
systemctl status firewalld
暂时关闭防火墙
systemctl stop firewalld
启动防火墙
systemctl start firewalld
禁止开机自启动防火墙
systemctl disable firewalld
开机自启动防火墙
systemctl enable firewalld
开启防火墙80端口
firewall-cmd --zone=public --add-port=80/tcp --permanent
重新加载防火墙规则
firewall-cmd --reload
查看防火墙打开的端口
firewall-cmd --zone=public --list-ports
关闭防火墙80端口
firewall-cmd --zone= public --remove-port=80/tcp --permanent
禁ping
iptables -A INPUT -p icmp -j DROP
iptables -A INPUT -s 192.168.2.178-p icmp -j DROP #只允许192.168.2.178 ping
清楚防火墙规则
iptables -F
查看防火墙规则
iptables -L
禁止访问80端口
iptables -A INPUT -p tcp --dport 80 -j DROP