CentOS Stream 8 Firewall Setting Tutorial
CentOS Stream 8 Firewall Management Guide: Use firewalld to finely control network access
The CentOS Stream 8 system uses firewalld as a dynamic firewall management tool, which defines the security level of different network traffic based on the concept of "zones". This guide will gradually explain the basic configuration and management methods of firewalld.
1. Install firewalld
If firewalld is not installed, execute the following command:
sudo dnf install firewalld
2. Startup and status check
Start the firewalld service:
sudo systemctl start firewalld
Check service status:
sudo systemctl status firewalld
3. Regional settings and management
Set the default region (for example, set the eth0 interface to the public region):
sudo firewall-cmd --set-default-zone=public
View all available areas:
sudo firewall-cmd --get-zones
View the currently active area:
sudo firewall-cmd --get-active-zones
4. Port rule configuration
Permanently add ports (for example, HTTP port 80):
sudo firewall-cmd --permanent --add-port=80/tcp
Apply changes:
sudo firewall-cmd --reload
Delete the port (for example, HTTP port 80):
sudo firewall-cmd --permanent --remove-port=80/tcp
Apply changes:
sudo firewall-cmd --reload
5. IP address access control
Use the rich-rule command to allow access to a specific IP address (for example, to allow access to port 3306 by 192.168.1.100):
sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.100" port port="3306" protocol="tcp" accept'
Apply changes:
sudo firewall-cmd --reload
6. Check the firewall rules
View all firewall rules:
sudo firewall-cmd --list-all
7. Firewall switch and power-on start
Turn off the firewall:
sudo systemctl stop firewalld
Enable the firewall to start automatically:
sudo systemctl enable firewalld
This guide provides basic configuration methods for CentOS Stream 8 firewall. Depending on actual needs, you can flexibly use these commands to set more refined firewall rules. Please note that after modifying the firewall rules, be sure to use the sudo firewall-cmd --reload command to make the changes take effect.
The above is the detailed content of CentOS Stream 8 Firewall Setting Tutorial. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1384
52
How to solve the complexity of WordPress installation and update using Composer
Apr 17, 2025 pm 10:54 PM
When managing WordPress websites, you often encounter complex operations such as installation, update, and multi-site conversion. These operations are not only time-consuming, but also prone to errors, causing the website to be paralyzed. Combining the WP-CLI core command with Composer can greatly simplify these tasks, improve efficiency and reliability. This article will introduce how to use Composer to solve these problems and improve the convenience of WordPress management.
Accelerate PHP code inspection: Experience and practice using overtrue/phplint library
Apr 17, 2025 pm 11:06 PM
During the development process, we often need to perform syntax checks on PHP code to ensure the correctness and maintainability of the code. However, when the project is large, the single-threaded syntax checking process can become very slow. Recently, I encountered this problem in my project. After trying multiple methods, I finally found the library overtrue/phplint, which greatly improves the speed of code inspection through parallel processing.
How to solve complex BelongsToThrough relationship problem in Laravel? Use Composer!
Apr 17, 2025 pm 09:54 PM
In Laravel development, dealing with complex model relationships has always been a challenge, especially when it comes to multi-level BelongsToThrough relationships. Recently, I encountered this problem in a project dealing with a multi-level model relationship, where traditional HasManyThrough relationships fail to meet the needs, resulting in data queries becoming complex and inefficient. After some exploration, I found the library staudenmeir/belongs-to-through, which easily installed and solved my troubles through Composer.
How to solve SQL parsing problem? Use greenlion/php-sql-parser!
Apr 17, 2025 pm 09:15 PM
When developing a project that requires parsing SQL statements, I encountered a tricky problem: how to efficiently parse MySQL's SQL statements and extract the key information. After trying many methods, I found that the greenlion/php-sql-parser library can perfectly solve my needs.
How to optimize website performance: Experiences and lessons learned from using the Minify library
Apr 17, 2025 pm 11:18 PM
In the process of developing a website, improving page loading has always been one of my top priorities. Once, I tried using the Miniify library to compress and merge CSS and JavaScript files in order to improve the performance of the website. However, I encountered many problems and challenges during use, which eventually made me realize that Miniify may no longer be the best choice. Below I will share my experience and how to install and use Minify through Composer.
Solve CSS prefix problem using Composer: Practice of padaliyajay/php-autoprefixer library
Apr 17, 2025 pm 11:27 PM
I'm having a tricky problem when developing a front-end project: I need to manually add a browser prefix to the CSS properties to ensure compatibility. This is not only time consuming, but also error-prone. After some exploration, I discovered the padaliyajay/php-autoprefixer library, which easily solved my troubles with Composer.
How to ensure the quality of Magento2 code: Use magento/magento-coding-standard
Apr 17, 2025 pm 11:12 PM
When developing Magento2 extensions, I encountered a common problem: how to ensure that the code quality meets Magento's standards. This not only affects the maintainability of the code, but also affects the overall stability and performance of the project. After some exploration, I found the magento/magento-coding-standard library, which specifically provides PHPCodeSniffer rules for Magento2 projects to help developers quickly check and optimize code.
How to solve PHP's phar://stream processing security problem? Use typo3/phar-stream-wrapper!
Apr 17, 2025 pm 08:24 PM
I'm having a serious problem when dealing with a PHP project: There is a security vulnerability in phar://stream processing, which can lead to the execution of malicious code. After some research and trial, I found an effective solution - using the typo3/phar-stream-wrapper library. This library not only solves my security issues, but also provides a flexible interceptor mechanism, making managing phar files more secure and controllable.
