在CentOS 8中,通常使用firewalld服务来管理防火墙规则。以下是配置防火墙的基本步骤:
安装firewalld:
sudo yum install firewalld -y
启动和启用firewalld:
sudo systemctl start firewalld
sudo systemctl enable firewalld
查看当前防火墙状态:
sudo firewall-cmd --state
查看开放的端口:
sudo firewall-cmd --list-all
开放特定端口:
sudo firewall-cmd --permanent --zonepublic --add-port80/tcp
sudo firewall-cmd --reload
允许特定IP访问:
sudo firewall-cmd --permanent --zonepublic --add-rich-rule 'rule family="ipv4" source address="192.168.1.100" accept'
sudo firewall-cmd --reload
删除端口规则:
sudo firewall-cmd --permanent --zonepublic --remove-port80/tcp
sudo firewall-cmd --reload
查看和删除富规则:
sudo firewall-cmd --list-rich-rules
sudo firewall-cmd --permanent --zonepublic --remove-rich-rule 'rule family="ipv4" source address="192.168.1.100"'
sudo firewall-cmd --reload
更改默认区域:
sudo firewall-cmd --permanent --set-default-zone=trusted
sudo firewall-cmd --reload
关闭防火墙:
sudo systemctl stop firewalld
sudo systemctl disable firewalld