Uwavula kanjani amachweba ku-Centos 7 Firewall

Ngibonga lesi sihloko I-CentOS kumanethiwekhi ekhompyutha ama-SME ibhalwe ngu Fico, Nginqume ukufaka I-Centos 7 Kwelinye lama-computer wami wokuhlola, ukufakwa kube lula impela, futhi ngilandele nendatshana Yini okufanele uyenze ngemuva kokufaka i-CentOS 7? Umhlahlandlela osheshayo ukuyifaka ngokuhambisana.  I-Centos Yangihamba nezinsuku zami zaseyunivesithi, ngakho-ke ibuyisa izinkumbulo ezithile kanye nesifiso sokuyisebenzisa futhi.

Inkinga

Kakade nge I-Centos 7 efakwe nginenkinga, angikwazi ukuvula amachweba athile ku-firewall, okubalulekile ukwenza eminye yemisebenzi yami yansuku zonke. Ukweqa umthetho lapha nalaphaya, ngaphezu kokufunda imibhalo esemthethweni, ngikwazile ukuthola isixazululo.

Ukuvula amachweba kuCentos 7 Firewall

Utilice este comando para encontrar la (s) zona (s) activa (s):

firewall-cmd --get-active-zones

Umphumela uzoba sesidlangalaleni, dmz noma okunye okunye. Kufanele ufake isicelo kuphela ezindaweni ezidingekayo.

Endabeni ye-dmz ungavula amachweba unomphela ngomyalo olandelayo:

firewall-cmd --zone=dmz --add-port=8080/tcp --permanent

De lo contrario, sustituya dmz por su zona, por ejemplo, si su zona es pública:

firewall-cmd --zone=public --add-port=8080/tcp --permanent

Para que los cambios surtan efectos debemos reiniciar el firewall con el siguiente comando:

firewall-cmd --reload

Amachweba avuleke okwesikhashana

Lesi sixazululo sivumela amachweba akhethiwe ukuthi ahlale evulekile unomphela, uma ufuna ukuthi amachweba ahlale evulekile okwesikhashana, kufanele wenze lezi zinyathelo ezilandelayo:

Endabeni ye-dmz ungavula amachweba okwesikhashana ngomyalo olandelayo:

firewall-cmd --zone=dmz --add-port=8080/tcp 

De lo contrario, sustituya dmz por su zona, por ejemplo, si su zona es pública:

firewall-cmd --zone=public --add-port=8080/tcp 

Para que los cambios surtan efectos debemos reiniciar el firewall con el siguiente comando:

firewall-cmd --reload

Abanye mhlawumbe ngeke babe nolwazi lokuthi ziyini izindawo ze-dmz, ngakho-ke kuhle ukuchaza:

Ayini ama-DMZ zones?

Ukucaphuna kusuka kumibhalo ye-tp-link:

I-DMZ (indawo ehlukunyezwe ngabasebenzi) ukwakheka kwenethiwekhi okucatshangwayo lapho amaseva okufinyelela omphakathi abekwa engxenyeni ehlukile yenethiwekhi. Inhloso ye-DMZ ukuqinisekisa ukuthi amaseva okufinyelela omphakathi awakwazi ukuxhumana nezinye izingxenye zenethiwekhi yangaphakathi, uma kwenzeka iseva iba sengozini.
 
I-firewall ibaluleke kakhulu ekusetshenzisweni kwe-DMZ njengoba inesibopho sokuqinisekisa ukuthi izinqubomgomo ezifanele zokuvikela amanethiwekhi endawo e-DMZ zikhona, ngenkathi kugcinwa ukufinyeleleka endaweni ehlukunyeziwe (DMZ).
 

Ngenxa yesimo esingelutho sokuqalisa kwe-DMZ, ukusebenzisa i-DMZ akunconywa ngaphandle kokuthi ujwayelene kakhulu namanethiwekhi. I-DMZ ayivamisile ukuba yimfuneko, kepha ngokuvamile inconywa ngabaphathi benethiwekhi abazi ngezokuphepha.

Ngamafuphi, i-DMZ izokwamukela kuphela lokho kuxhumana okukhethwe ngaphambilini. Uhlobo lokufinyelela komphakathi kepha lapho ukuxhumana kunqunyelwe khona.

Ngalezi zinyathelo ungavula amachweba owadingayo kuCentos FirewallKhumbula ukuthi kubalulekile ukuthatha izinyathelo zokuqapha ezidingekayo ukuze abantu besithathu abangagunyaziwe bangangeni kukhompyutha yethu ngalezi zimbobo. Sithemba ukuthi uzokuthola kuwusizo futhi ungakhohlwa ukusishiya imibono yakho.


Okuqukethwe yi-athikili kunamathela ezimisweni zethu ze izimiso zokuhlelela. Ukubika iphutha chofoza lapha.

Amazwana ayi-3, shiya okwakho

Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.

  1.   frederico kusho

    I-athikili enhle, Luigys othandekayo. Uma uyibuka, angicabangi ukuthi ngithumele noma yini mayelana nezicishamlilo noma ama-iptables. Udaba lokuphepha lukhohlisayo, noma kunezinhlelo ezikusiza kakhulu ukukusebenzisa. Benginaso leso sidingo kwiseva ebheke kwi-Intanethi ebisikhiqizwe cishe unyaka wonke. Enkampanini yami, singaphansi kwe-ISP, futhi i-firewall ngokusebenzisa iptables engiyilungisile, iqinisekisa ukuphepha okuhle. I-WAN yami akuyona i-Intanethi. Luhlobo oluthile lwe-DMZ yangasese ye-ISP yami, lapho ezinye izinkampani eziningi ezifana nezami zixhuma khona. Lolo hlobo lwenethiwekhi lusetshenziswa kakhulu lapha.

    1.    Luigys toro kusho

      UFederico, ngokuvamile, angiyithinti kakhulu indaba yokuphepha, ngoba anginalo ulwazi olwanele lokukunikeza ngaphezu kokuthintwa okuyinhloko engikunikeza amaseva ami namakhompyutha wami uqobo.

      Ngizwile ngalolu hlobo lwenethiwekhi ethandwayo eCuba, ngiyethemba kwesinye isikhathi ngizofunda kabanzi ngayo. Akungabazeki ukuthi okwamanje kukhona amathuluzi ahlukahlukene asivumela ukuthi senze impilo ibe lula, kepha ulwazi lomuntu ngamunye mayelana nokunethezeka kwethuluzi kufanele lincishwe njalo.

  2.   UWalter Omar Lopez kusho

    Ngilivula kanjani uhla lwamachweba nezimbobo eziningi ngomyalo we-firewall-cmd? kuma-iptables ungaphepha futhi angitholi ukuthi ngikwenze kanjani, ngiyabonga.