1 firewalld开启及关闭

systemctl start firewalld    #开启防火墙
systemctl stop firewalld     #关闭防火墙
systemctl status firewalld   #防火墙状态
systemctl enable firewalld   #防火墙开机自启
systemctl disable firewalld  #禁用防火墙

2.firewalld端口及IP管理

#查看开放的端口，这里是没有的
firewall-cmd --zone=public --list-ports
#添加你需要开放的端口XXXX
firewall-cmd --zone=public --add-port=XXXX/tcp --permanent
#移除你需要关闭的端口XXXX
firewall-cmd --zone=public --remove-port=xxxx/tcp --permanent
#指定IP才能访问
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="IP地址" port protocol="tcp" port="端口" accept"
#删除IP访问规则
firewall-cmd --permanent --remove-rich-rule="rule family="ipv4" source address="IP地址" port protocol="tcp" port="端口" accept"
#查看默认防火墙状态
firewall-cmd --state
#查看防火墙规则
firewall-cmd --list-all
#查看区域信息
irewall-cmd --get-active-zones
firewall-cmd --list-all-zones
#添加成功后重新加载
firewall-cmd --reload