Centos7 禁止firewalld并使用iptables 作默认防火墙
一、停止并禁用firewalld
[root@test ~]# systemctl stop firewalld [root@test ~]# systemctl disable firewalld Removed symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service. Removed symlink /etc/systemd/system/basic.target.wants/firewalld.service.
二、查看iptables 列表,并安装service 软件
[root@test ~]# yum list all iptables* 已加载插件:fastestmirror Loading mirror speeds from cached hostfile * base: mirrors.neusoft.edu.cn * extras: mirrors.tuna.tsinghua.edu.cn * updates: mirrors.sina.cn 已安装的软件包 iptables.x86_64 1.4.21-16.el7 @base 可安装的软件包 iptables.i686 1.4.21-16.el7 base iptables-devel.i686 1.4.21-16.el7 base iptables-devel.x86_64 1.4.21-16.el7 base iptables-services.x86_64 1.4.21-16.el7 base iptables-utils.x86_64 1.4.21-16.el7 base
安装service
[root@test ~]# yum install iptablesyum install iptables-services.x86_64 -y
三、启动iptables服务,并检查状态
[root@test ~]# systemctl start iptables [root@test ~]# systemctl status iptables ● iptables.service - IPv4 firewall with iptables Loaded: loaded (/usr/lib/systemd/system/iptables.service; disabled; vendor preset: disabled) Active: active (exited) since 五 2016-08-05 07:54:57 CST; 9s ago Process: 8164 ExecStart=/usr/libexec/iptables/iptables.init start (code=exited, status=0/SUCCESS) Main PID: 8164 (code=exited, status=0/SUCCESS) 8月 05 07:54:56 test systemd[1]: Starting IPv4 firewall with iptables... 8月 05 07:54:57 test iptables.init[8164]: iptables: Applying firewall rules: [ OK ] 8月 05 07:54:57 test systemd[1]: Started IPv4 firewall with iptables.
四、加入开机自启动
[root@test ~]# systemctl enable iptables
Created symlink from /etc/systemd/system/basic.target.wants/iptables.service to /usr/lib/systemd/system/iptables.service.
每个人都应是守望者,守望我们的心智,我们的理想,以防它在生活中不知不觉地坠落、被操控和被自己遗忘。。。