LoginSignup
1

More than 5 years have passed since last update.

CentOS7 ファイアーウォール設定:firewall-cmdコマンド(確認系)

Last updated at Posted at 2016-01-30

デフォルトのゾーンの設定を見る場合

firewall-cmd --list-all

    ###output###
    public (default, active)
      interfaces: enp0s3 enp0s8 enp0s9
      sources:
      services: dhcpv6-client http mysql nfs ntp openvpn rpc-bind selenium ssh tomcat
      ports:
      masquerade: no
      forward-ports:
      icmp-blocks:
      rich rules:

すべてのゾーンの設定を見る場合

firewall-cmd --list-all-zones

 ###output###
    public (default, active)
      interfaces: enp0s3 enp0s8 enp0s9
      sources:
      services: dhcpv6-client http mysql nfs ntp openvpn rpc-bind selenium ssh tomcat
      ports:
      masquerade: no
      forward-ports:
      icmp-blocks:
      rich rules:
           ・・・・・
           ・・・・・
           ・・・・・

デフォルトのゾーンが何になっているか確認する

firewall-cmd --get-default-zone

 ###output###
   public

Firewalldが起動しているか確認する

firewall-cmd --state

###output###
    running

定義されているサービス一覧

 firewall-cmd --get-services

 ###output###
   RH-Satellite-6 amanda-client bacula bacula-client dhcp dhcpv6 dhcpv6-client dns freeipa-ldap 
   freeipa-ldaps freeipa-replication ftp high-availability http https imaps ipp ipp-client ipsec
   iscsi-target kerberos kpasswd ldap ldaps libvirt libvirt-tls mdns mountd ms-wbt mysql 
   nfs ntp openvpn pmcd pmproxy pmwebapi pmwebapis pop3s postgresql proxy-dhcp radius rpc-bind
   rsyncd samba samba-client selenium smtp ssh telnet 
   tftp tftp-client tomcat transmission-client vdsm vnc-server wbem-https

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
1