firewalld配置实例(多个),firewalld实例
firewalld配置实例(多个),firewalld实例
例一:在域 172.24.0.0/24 内的客户端不能访问您的虚拟机系统
(一)
[root@desktop0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.24.0.0/24" service name="ssh" reject "
success
[root@desktop0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.24.0.0/24" service name="ssh" reject " --per
success
(二)
[root@server0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.25.0.10" port port="3260" protocol="tcp" accept"
[root@server0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.25.0.10" port port="3260" protocol="tcp" accept"
例二:在 172.25.0.0/24 网络中的系统,访问 desktopX 的本地端口 5423 将被转发到 80
[root@desktop0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.25.0.0/24" forward-port port="5423" protocol="tcp" to-port="80""
success
[root@desktop0 ~]# firewall-cmd --add-rich-rule "rule family="ipv4"
source address="172.25.0.0/24" forward-port port="5423"? protocol="tcp" to-port="80"" --per
success
例三:允许通过的服务
[root@server0 ~]# firewall-cmd --add-service=https
success
[root@server0 ~]# firewall-cmd --add-service=https --per
success
评论暂时关闭