CentOS Stream 8 Firewall Setting Tutorial-CentOS-php.cn

Home

Operation and Maintenance

CentOS

CentOS Stream 8 Firewall Setting Tutorial

John Lennon

Apr 14, 2025 pm 03:51 PM

centostool

CentOS Stream 8 Firewall Management Guide: Use firewalld to finely control network access

The CentOS Stream 8 system uses firewalld as a dynamic firewall management tool, which defines the security level of different network traffic based on the concept of "zones". This guide will gradually explain the basic configuration and management methods of firewalld.

1. Install firewalld

If firewalld is not installed, execute the following command:

 sudo dnf install firewalld

2. Startup and status check

Start the firewalld service:

 sudo systemctl start firewalld

Check service status:

 sudo systemctl status firewalld

3. Regional settings and management

Set the default region (for example, set the eth0 interface to the public region):

 sudo firewall-cmd --set-default-zone=public

View all available areas:

 sudo firewall-cmd --get-zones

View the currently active area:

 sudo firewall-cmd --get-active-zones

4. Port rule configuration

Permanently add ports (for example, HTTP port 80):

 sudo firewall-cmd --permanent --add-port=80/tcp

Apply changes:

 sudo firewall-cmd --reload

Delete the port (for example, HTTP port 80):

 sudo firewall-cmd --permanent --remove-port=80/tcp

Apply changes:

 sudo firewall-cmd --reload

5. IP address access control

Use the rich-rule command to allow access to a specific IP address (for example, to allow access to port 3306 by 192.168.1.100):

 sudo firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.100" port port="3306" protocol="tcp" accept'

Apply changes:

 sudo firewall-cmd --reload

6. Check the firewall rules

View all firewall rules:

 sudo firewall-cmd --list-all

7. Firewall switch and power-on start

Turn off the firewall:

 sudo systemctl stop firewalld

Enable the firewall to start automatically:

 sudo systemctl enable firewalld

This guide provides basic configuration methods for CentOS Stream 8 firewall. Depending on actual needs, you can flexibly use these commands to set more refined firewall rules. Please note that after modifying the firewall rules, be sure to use the sudo firewall-cmd --reload command to make the changes take effect.

The above is the detailed content of CentOS Stream 8 Firewall Setting Tutorial. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

What Comes After CentOS: The Road AheadApr 16, 2025 am 12:07 AM

Alternatives to CentOS include RockyLinux, AlmaLinux, OracleLinux, and SLES. 1) RockyLinux and AlmaLinux provide RHEL-compatible binary packages and long-term support. 2) OracleLinux provides enterprise-level support and Ksplice technology. 3) SLES provides long-term support and stability, but commercial licensing may increase costs.

CentOS: Exploring the AlternativesApr 15, 2025 am 12:03 AM

Alternatives to CentOS include UbuntuServer, Debian, Fedora, RockyLinux, and AlmaLinux. 1) UbuntuServer is suitable for basic operations, such as updating software packages and configuring the network. 2) Debian is suitable for advanced usage, such as using LXC to manage containers. 3) RockyLinux can optimize performance by adjusting kernel parameters.

Centos shutdown command lineApr 14, 2025 pm 09:12 PM

The CentOS shutdown command is shutdown, and the syntax is shutdown [Options] Time [Information]. Options include: -h Stop the system immediately; -P Turn off the power after shutdown; -r restart; -t Waiting time. Times can be specified as immediate (now), minutes ( minutes), or a specific time (hh:mm). Added information can be displayed in system messages.

Difference between centos and ubuntuApr 14, 2025 pm 09:09 PM

The key differences between CentOS and Ubuntu are: origin (CentOS originates from Red Hat, for enterprises; Ubuntu originates from Debian, for individuals), package management (CentOS uses yum, focusing on stability; Ubuntu uses apt, for high update frequency), support cycle (CentOS provides 10 years of support, Ubuntu provides 5 years of LTS support), community support (CentOS focuses on stability, Ubuntu provides a wide range of tutorials and documents), uses (CentOS is biased towards servers, Ubuntu is suitable for servers and desktops), other differences include installation simplicity (CentOS is thin)

Centos configuration IP addressApr 14, 2025 pm 09:06 PM

Steps to configure IP address in CentOS: View the current network configuration: ip addr Edit the network configuration file: sudo vi /etc/sysconfig/network-scripts/ifcfg-eth0 Change IP address: Edit IPADDR= Line changes the subnet mask and gateway (optional): Edit NETMASK= and GATEWAY= Lines Restart the network service: sudo systemctl restart network verification IP address: ip addr

How to install centosApr 14, 2025 pm 09:03 PM

CentOS installation steps: Download the ISO image and burn bootable media; boot and select the installation source; select the language and keyboard layout; configure the network; partition the hard disk; set the system clock; create the root user; select the software package; start the installation; restart and boot from the hard disk after the installation is completed.

Centos8 restarts sshApr 14, 2025 pm 09:00 PM

The command to restart the SSH service is: systemctl restart sshd. Detailed steps: 1. Access the terminal and connect to the server; 2. Enter the command: systemctl restart sshd; 3. Verify the service status: systemctl status sshd.

How to restart the network in centos8Apr 14, 2025 pm 08:57 PM

Restarting the network in CentOS 8 requires the following steps: Stop the network service (NetworkManager) and reload the network module (r8169), start the network service (NetworkManager) and check the network status (by ping 8.8.8.8)

See all articles