Home > System Tutorial > LINUX > Linux firewall settings are easy to set up to ensure server security!

Linux firewall settings are easy to set up to ensure server security!

王林
Release: 2024-02-15 08:40:03
forward
759 people have browsed it

In today's Internet era, server security is highly valued. Among them, firewall is an important part of ensuring server security. Although there are many firewall tools available for Linux systems, Firewalld is the most popular one. This article is designed to help you learn how to use Firewalld firewall under Linux system to protect server security.

Linux 防火墙设置轻松搞定,保障服务器安全!

1. Basic use of firewalld

启动: systemctl start firewalld

关闭: systemctl stop firewalld

查看状态: systemctl status firewalld

开机禁用 : systemctl disable firewalld

开机启用 : systemctl enable firewalld
Copy after login

2. Systemctl is the main tool among the service management tools of CentOS7. It integrates the functions of the previous service and chkconfig.

启动一个服务:systemctl start firewalld.service

关闭一个服务:systemctl stop firewalld.service

重启一个服务:systemctl restart firewalld.service

显示一个服务的状态:systemctl status firewalld.service

在开机时启用一个服务:systemctl enable firewalld.service

在开机时禁用一个服务:systemctl disable firewalld.service

查看服务是否开机启动:systemctl is-enabled firewalld.service

查看已启动的服务列表:systemctl list-unit-files|grep enabled

查看启动失败的服务列表:systemctl --failed
Copy after login

3. Configure firewalld-cmd

查看版本: firewall-cmd --version

查看帮助: firewall-cmd --help

显示状态: firewall-cmd --state

查看所有打开的端口: firewall-cmd --zone=public --list-ports

更新防火墙规则: firewall-cmd --reload

查看区域信息: firewall-cmd --get-active-zones

查看指定接口所属区域: firewall-cmd --get-zone-of-interface=eth0

拒绝所有包:firewall-cmd --panic-on

取消拒绝状态: firewall-cmd --panic-off

查看是否拒绝: firewall-cmd --query-panic
Copy after login

4. How to open a port?

Add to

firewall-cmd --zone=public --add-port=80/tcp --permanent (–permanent永久生效,没有此参数重启后失效)
Copy after login

Reload

firewall-cmd --reload

firewall-cmd --zone=public --query-port=80/tcp

firewall-cmd --zone=public --remove-port=80/tcp --permanent
Copy after login

Whether you are a system administrator looking for a new Linux firewall solution, or a developer who wants to better understand server security, I believe this article will be very useful to you. All in all, using Firewalld firewall makes it easy to protect your server from cyberattacks. We strongly recommend that you research and apply the knowledge described in this article to ensure your server has the best possible security performance on your network.

The above is the detailed content of Linux firewall settings are easy to set up to ensure server security!. For more information, please follow other related articles on the PHP Chinese website!

source:lxlinux.net
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template