"리눅스 iptables 끄기, 켜기"의 두 판 사이의 차이

2016년 3월 29일 (화) 12:36 판

✔️ CentOS 6에서 테스트하였습니다.

1 개요

How To Disable/Enable The Iptables Firewall in Linux
How To Turn off/Turn on Linux Firewall
리눅스 iptables 끄기, 켜기
리눅스 OS 방화벽 비활성화/활성화 하기

리눅스 설치하면 방화벽은 기본적으로 켜져 있다.
아래 명령어로 iptables를 끄고 켤 수 있다.

service iptables stop
/etc/init.d/iptables stop

service iptables start
/etc/init.d/iptables start

2 끄기

[root@zetawiki ~]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     icmp --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:ssh 
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited 

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited 

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

[root@zetawiki ~]# service iptables stop
iptables: Setting chains to policy ACCEPT: filter          [  OK  ]
iptables: Flushing firewall rules:                         [  OK  ]
iptables: Unloading modules:                               [  OK  ]

[root@zetawiki ~]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

3 켜기

[root@zetawiki ~]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

[root@zetawiki ~]# service iptables start
iptables: Applying firewall rules:                         [  OK  ]

[root@zetawiki ~]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     icmp --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:ssh 
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited 

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
REJECT     all  --  anywhere             anywhere            reject-with icmp-host-prohibited 

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

4 같이 보기

iptables

5 참고 자료

http://www.cyberciti.biz/faq/turn-on-turn-off-firewall-in-linux/

@@ 18번째 줄: / 18번째 줄: @@
 ==끄기==
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# iptables -L
 Chain INPUT (policy ACCEPT)
@@ 35번째 줄: / 35번째 줄: @@
 target     prot opt source               destination
 </source>
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# service iptables stop
 iptables: Setting chains to policy ACCEPT: filter          [  OK  ]
@@ 41번째 줄: / 41번째 줄: @@
 iptables: Unloading modules:                               [  OK  ]
 </source>
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# iptables -L
 Chain INPUT (policy ACCEPT)
@@ 54번째 줄: / 54번째 줄: @@
 ==켜기==
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# iptables -L
 Chain INPUT (policy ACCEPT)
@@ 65번째 줄: / 65번째 줄: @@
 target     prot opt source               destination
 </source>
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# service iptables start
 iptables: Applying firewall rules:                         [  OK  ]
 </source>
-<source lang='cli'>
+<source lang='console'>
 [root@zetawiki ~]# iptables -L
 Chain INPUT (policy ACCEPT)