Vi/etc/sysconfig/iptables
-A input-m state–state new-m tcp-p tcp–dport 80-j ACCEPT (allow 80 ports through the firewall)
-A input-m state–state new-m tcp-p tcp–dport 3306-j ACCEPT (Allow 3306 ports through the firewall)
Special Note: Many netizens add these two rules to the last line of the firewall configuration, causing the firewall to fail to start, the correct one should be added to the default 22 port under this rule
After adding the firewall rules as follows:
######################################
# Firewall configuration written by system-config-firewall
# Manual Customization of this file was not recommended.
*filter
: INPUT ACCEPT [0:0]
: FORWARD accept [0:0]
: OUTPUT ACCEPT [0:0]
-A input-m state–state established,related-j accept < Br>-a input-p icmp-j accept
-a input-i lo-j accept
-a input-m state–state new-m tcp-p tcp–dport 22-j accept
-a input-m state–state new-m tcp-p tcp–dport 80-j accept
-a input-m state–state NE W-m tcp-p tcp–dport 3306-j accept
-a input-j reject–reject-with icmp-host-prohibited
-a forward-j Reject–reject-with icmp-host-prohibited
commit
#####################################
/etc/init.d/iptables restart
#最后重启防火墙使配置生效
Linux configuration firewall, open 80 ports, 3306 ports (RPM)