centos7防火墙设置

打开1000端口示例：

#查看接口所属区域

[fuyouwei@localhost 下载]$ firewall-cmd --get-zone-of-interface=wlp4s0
public

#在public上开启端口10000/tcp

[fuyouwei@localhost 下载]$ firewall-cmd --permanent --zone=public --add-port=10000/tcp

success

#重新载入并查看规则

[fuyouwei@localhost 下载]$ firewall-cmd --reload
success

[fuyouwei@localhost 下载]$ firewall-cmd --zone=public --list-all
public (active)
  target: default
  icmp-block-inversion: no
  interfaces: wlp4s0
  sources:
  services: ssh dhcpv6-client ipp-client mdns ipp
  ports: 12694/tcp 12694/udp 10000/tcp
  protocols:
  masquerade: no
  forward-ports:
  source-ports:
  icmp-blocks:
  rich rules: