How to configure firewalld in RHEL 7-优快云博客

本文围绕Red Hat Enterprise Linux 7系统中firewalld的配置展开。提出如何在RHEL 7中配置firewalld的问题，给出一系列配置Firewalld服务的命令，如启动、停止服务，添加接口到区域等，还指出要验证接口区域和允许服务以确保访问。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

SOLUTION 已验证 - 已更新 2016年三月29日08:47 -

Follow are list of commands that would be helpful to configure Firewalld service.

1. To start/stop/status firewalld service

Raw

systemctl start firewalld.service

systemctl stop firewalld.service

systemctl status firewalld.service

2. To enable/disable firewalld service at boot time.

To enable firewalld service from starting at boot time.

systemctl enable firewalld

To disable firewalld service from starting at boot time.

systemctl disable firewalld

3. To list details of default and active zones.

firewall-cmd --get-default-zone

firewall-cmd --get-active-zones

firewall-cmd --list-all

4. To add/remove interfaces to zones.

To add interface "eth1" to "public" zone.

firewall-cmd --zone=public --change-interface=eth1

5. To list/add/remove services to zones.

To list available services

firewall-cmd --get-services

To add "samba and samba-client" service to a specific zone.
You may include, "permanent" flag to make this permanent change.

firewall-cmd --zone=public --add-service=samba --add-service=samba-client --permanent

To list services configured in a specific zone.

firewall-cmd --zone=public --list-service

6. To list and Add ports to firewall.

Raw

firewall-cmd --list-ports

firewall-cmd --zone=public --add-port=5000/tcp

Note:

You may restart the Network service followed by Firewall server.

systemctl restart network.service
systemctl restart firewalld.service

Verify interfaces are added to correct zones and specific services are allowed to provide
access to server while firewalld is running.