52
service iptables start 無反應的解決方法
[root@lt ~]# service iptables status
防火牆已停
[root@lt ~]# service iptables start
[root@lt ~]# service iptables status
防火牆已停
解決方法:
一、初始化iptables。
iptables -F
service iptables save
service iptables restart
vi /etc/sysconfig/iptables
二、把預置的iptables規則添加進去就可以了:
# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
然後保存。
最後更新:2017-04-02 17:51:23
上一篇:
javascript驗證價格輸入
下一篇: JS保留兩位小數
- VC6集成環境編輯器字體的修改
- JsonHelper Json轉xml,Json轉DataSet,DataSet轉Json
- Oracle中計算日期之間相差的年月
- Java程序員—Java職業生涯規劃
- vue工具
- Oracle - ORA-12505, TNS:listener does not currently know of SID given in connect descriptor 解決
- Stream Processing for Everyone with SQL and Apache Flink
- 算法導論-1
- poj 2039 To and Fro【字符數組操作】
- 使用IPVS實現Kubernetes入口流量負載均衡