본문 바로가기
OS/Linux

[Linux]firewalld 추가

1125521101 2017. 5. 8. 10:24

--등록된 서비스 확인

firewall-cmd --get-services


--서비스 추가

firewall-cmd --permanent --zone=public --add-service=http

firewall-cmd --permanent --zone=public --add-service=https


--포트 추가

firewall-cmd --permanent --zone=public --add-port=8080/tcp

--룰 추가

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="127.0.0.1" port protocol="tcp" port="8080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="127.0.0.1" port protocol="tcp" port="8080" accept'



--포트 삭제

firewall-cmd --permanent --zone=public --remove-port=8080/tcp

--룰 추가

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="1.1.1.1" port protocol="tcp" port="8080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="2.2.2.2" port protocol="tcp" port="8080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="3.3.3.3" port protocol="tcp" port="8080" accept'



--포트 삭제

firewall-cmd --permanent --zone=public --remove-port=18080/tcp

--룰 추가

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="1.1.1.1" port protocol="tcp" port="18080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="2.2.2.2" port protocol="tcp" port="18080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="3.3.3.3" port protocol="tcp" port="18080" accept'



--포트 삭제

firewall-cmd --permanent --zone=public --remove-port=58080/tcp

--룰 추가

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="1.1.1.1" port protocol="tcp" port="58080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="2.2.2.2" port protocol="tcp" port="58080" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="3.3.3.3" port protocol="tcp" port="58080" accept'


--룰 삭제

firewall-cmd --permanent --zone=public --remove-rich-rule='rule family="ipv4" source address="1.1.1.1" port protocol="tcp" port="58080" accept'

firewall-cmd --permanent --zone=public --remove-rich-rule='rule family="ipv4" source address="2.2.2.2" port protocol="tcp" port="58080" accept'

firewall-cmd --permanent --zone=public --remove-rich-rule='rule family="ipv4" source address="3.3.3.3" port protocol="tcp" port="58080" accept'




--변경 적용

firewall-cmd --reload















저작자표시

'OS > Linux' 카테고리의 다른 글

[Linux]ssh 아이피 허용  (0) 2017.08.21
[Linux]bash, .bash_profile 사용 예제  (0) 2017.06.23
[리눅스]firewalld  (0) 2017.03.30
systemd unit 등록 관련 옵션 정리  (1) 2016.02.12
chkconfig 등록 및 활용  (0) 2016.02.12

'OS/Linux' Related Articles

티스토리툴바