基于Centos 7
注意:CentOS 7默认的防火墙不是iptables,而是firewalld
# 停止firewalld服务
systemctl stop firewalld
# 禁用firewalld服务
# systemctl mask firewalld
# 删除firewalld
yum erase firewalld
# 先检查是否安装了iptables
systemctl status iptables
# 安装iptables
yum install iptables iptables-services -y
# 注册iptables服务,相当于以前的chkconfig iptables on
systemctl enable iptables
# 开启服务
systemctl start iptables
# 查看状态
systemctl status iptables
# 重启防火墙
systemctl restart iptables
# 保存规则
service iptables save
# 如果报“-bash: service: command not found”,则需要安装initscripts
yum install initscripts -y
注意添加规则的先后顺序