1 先查询防火墙状态
[root@old-09 ~]# /etc/init.d/iptables status Table: filter Chain INPUT (policy ACCEPT) num target prot opt source destination 1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED 2 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 3 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 4 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 5 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited Chain FORWARD (policy ACCEPT) num target prot opt source destination 1 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited Chain OUTPUT (policy ACCEPT) num target prot opt source destination
2 关闭防火墙
/etc/init.d/iptable stop (执行2次怕1次关不上)
[root@o09 ~]# /etc/init.d/iptables stop iptables: Setting chains to policy ACCEPT: filter [ OK ] iptables: Flushing firewall rules: [ OK ] iptables: Unloading modules: [ OK ]
[root@o09 ~]# /etc/init.d/iptables status
iptables: Firewall is not running.
3 查看是否开机自动启动 (数字3项)
[root@o09 ~]# chkconfig | grep iptables iptables 0:off 1:off 2:on 3:on 4:on 5:on 6:off
4 关闭开机自动启动软件
[root@o09 ~]# chkconfig iptables off
5 检查是否关闭
[root@o09 ~]# chkconfig | grep iptables iptables 0:off 1:off 2:off 3:off 4:off 5:off 6:off