deepin系统防火墙设置
<h1 class="Post-Title" style="text-align: center">deepin系统防火墙设置</h1><p data-first-child="" data-pid="FEW_K8BR">deepin firewall</p>
<h2 data-pid="FEW_K8BR">安装服务</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>sudo apt-<span style="color: rgba(0, 0, 255, 1)">get</span> install firewalld systemd -y</pre>
</div>
<p> </p>
</div>
<h2 data-pid="BZ02Srvv">查看服务器上是否安装了firewall</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre> systemctl status firewalld </pre>
</div>
<p> </p>
</div>
<h2 data-pid="O8bQZ46M">开启防火墙</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>systemctl start firewalld.service </pre>
</div>
<p> </p>
</div>
<h2 data-pid="s8jHGW7S">关闭防火墙</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>systemctl stop firewalld.service</pre>
</div>
<p> </p>
</div>
<h2 data-pid="-F60PFe9">设置开机自启</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>systemctl enable firewalld.service</pre>
</div>
<p> </p>
</div>
<h2 data-pid="TaC9Jn8Q">设置关闭开机自启动</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>systemctl disable firewalld.service</pre>
</div>
<p> </p>
</div>
<h2 data-pid="hcYuQXjS">在不改变状态的条件下重新加载防火墙</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>firewall-cmd --reload</pre>
</div>
<p> </p>
</div>
<h2 data-pid="hirLbPkt">查看已开发的端口</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>netstat -anp</pre>
</div>
<p> </p>
</div>
<h2 data-pid="XhkP69Mf">开放100-500端口</h2>
<div class="highlight">
<div class="cnblogs_code">
<pre>firewall-cmd --zone=<span style="color: rgba(0, 0, 255, 1)">public</span> --add-port=<span style="color: rgba(128, 0, 128, 1)">100</span>-<span style="color: rgba(128, 0, 128, 1)">500</span>/tcp --permanent</pre>
</div>
<p> </p>
</div>
<h2 data-pid="BbLlbNaC">开放全部端口给指定ip:192.168.31.131</h2>
<div class="cnblogs_code">
<pre>firewall-cmd --permanent --add-rich-rule=<span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">rule family=</span><span style="color: rgba(128, 0, 0, 1)">"</span>ipv4<span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)"> source address=</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 128, 1)">192.168</span>.<span style="color: rgba(128, 0, 128, 1)">31.131</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)"> port protocol=</span><span style="color: rgba(128, 0, 0, 1)">"</span>tcp<span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)"> port=</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 128, 1)">1</span>-<span style="color: rgba(128, 0, 128, 1)">65535</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)"> accept</span><span style="color: rgba(128, 0, 0, 1)">"</span></pre>
</div>
<p> </p><br><br>
来源:https://www.cnblogs.com/cbpm-wuhq/p/17412074.html
頁:
[1]