安装防火墙
yum install firewalld
查看防火墙状态
firewall-cmd --state
开启防火墙
systemctl start firewalld
开机启动防火墙
systemctl enable firewalld
开发端口
firewall-cmd --zone=public --add-port=5672/tcp --permanent # 开放5672端口
关闭端口
firewall-cmd --zone=public --remove-port=5672/tcp --permanent #关闭5672端口
加载配置
firewall-cmd --reload
查看防火墙所有开放的端口
firewall-cmd --zone=public --list-ports
关闭防火墙
systemctl stop firewalld.service
查看防火墙状态
firewall-cmd --state
查看监听端口
netstat -lnpt
#开启某个端口(指定IP可访问)
firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="10.0.0.1/32" port protocol="tcp" port="80" accept"
firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="10.0.0.1/32" port protocol="tcp" port="6379" accept"
#删除策略
firewall-cmd --permanent --zone=public --remove-rich-rule="rule family="ipv4" source address="10.1.1.14/32" port protocol="tcp" port="80" accept"
# 查看策略列表 firewall-cmd --list-rich-rule 或 firewall-cmd --list-all

