Linux iptables

firewalld

無効

# systemctl stop firewalld.service
# systemctl mask firewalld.service
# systemctl list-unit-files | grep firewalld

iptables

インストール

# yum install iptables-services
# systemctl start iptables-services
# systemctl enable iptables-services

設定

※/etc/sysconfig/iptables
# SSH, HTTP, HTTPS
-A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 80 -j ACCEPT
-A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 443 -j ACCEPT