banner
李大仁博客

李大仁博客

天地虽大,但有一念向善,心存良知,虽凡夫俗子,皆可为圣贤。
HomeArchivesTags

CentOS的firewalld和iptables使用

#centos#firewalld#iptables92
AI-generated summary
This article explains how to use firewalld and iptables as firewall tools on CentOS 6.x and 7.x. It provides commands to open HTTP and HTTPS ports on both versions. For CentOS 7.x, it is recommended to use firewalld, but if iptables is preferred, firewalld needs to be uninstalled and iptables needs to be installed and enabled. For CentOS 6.x, iptables is the default firewall tool.

CentOS 在 7.x 和 6.x 分别使用 firewalld 和 iptables 作为防火墙工具,习惯上 iptables 之后 firewalld 各种不适应。 下面总结在各个版本 CentOS 下 firewalld 和 iptables 使用。 这里配置打开 HTTP/HTTPs 端口功能,分别对应 80 和 443 端口

CentOS7.x 使用 firewalld

#====================CENTOS 7.x==================
systemctl enable firewalld
systemctl start firewalld

HTTP#

firewall-cmd --permanent --zone=public --add-port=80/tcp

HTTPS#

firewall-cmd --permanent --zone=public --add-port=443/tcp
firewall-cmd —reload

CentOS6.x 使用 iptables

#====================CENTOS 6.x======================

HTTP#

iptables -A INPUT -p tcp --dport 80 -j ACCEPT

HTTPS#

iptables -A INPUT -p tcp --dport 443 -j ACCEPT

/etc/rc.d/init.d/iptables save
service iptables restart

#chkconfig iptables on
#chkconfig iptables off

CentOS7.x 使用 iptables, 需要重新安装 iptables 并且关闭 firewalld 服务

#===================CENTOS 7.0 but use iptables=====

replace firewalld with iptables#

yum -y install iptables-services
systemctl mask firewalld
systemctl enable iptables
systemctl stop firewalld
systemctl start iptables

#HTTP
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
#HTTPS
iptables -A INPUT -p tcp --dport 443 -j ACCEPT

systemctl restart iptables

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.