[설정] CentOS/RHEL/Rocky Linux/Oracle Linux에서 firewalld(방화벽) 비활성화

북극여우·2023년 11월 8일
리눅스
0

리눅스 설정

목록 보기
5/5

방화벽 장비가 별도로 존재하는 네트워크 망이라면, 서버에선 방화벽을 비활성화 하고 방화벽 장비에서만 정책을 관리하는 경우가 많다.

1. firewalld 상태 확인

[root@calintzcs ~]# systemctl status firewalld

● firewalld.service - firewalld - dynamic firewall daemon
     Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; preset: enabled)
     Active: active (running) since Wed 2023-11-08 15:11:27 KST; 7min ago
       Docs: man:firewalld(1)
   Main PID: 734 (firewalld)
      Tasks: 2 (limit: 23009)
     Memory: 42.8M
        CPU: 540ms
     CGroup: /system.slice/firewalld.service
             └─734 /usr/bin/python3 -s /usr/sbin/firewalld --nofork --nopid

Nov 08 15:11:27 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:11:27 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
  • Active 항목이 active (running)로 되어있다면 현재 동작 중이라는 의미다.

2. firewalld 중지

[root@calintzcs ~]# systemctl stop firewalld

firewalld 상태 확인

[root@calintzcs ~]# systemctl status firewalld

○ firewalld.service - firewalld - dynamic firewall daemon
     Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; preset: enabled)
     Active: inactive (dead) since Wed 2023-11-08 15:20:05 KST; 24s ago
   Duration: 8min 38.078s
       Docs: man:firewalld(1)
    Process: 734 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=0/SUCCESS)
   Main PID: 734 (code=exited, status=0/SUCCESS)
        CPU: 585ms

Nov 08 15:11:27 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:11:27 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
Nov 08 15:20:05 calintzcs.com systemd[1]: Stopping firewalld - dynamic firewall daemon...
Nov 08 15:20:05 calintzcs.com systemd[1]: firewalld.service: Deactivated successfully.
Nov 08 15:20:05 calintzcs.com systemd[1]: Stopped firewalld - dynamic firewall daemon.
  • Active 항목이 inactive (dead)로 되어 있다면 현재 중지 상태라는 의미다.

3. 부팅 시 firewalld 자동 시작 비활성화

[root@calintzcs ~]# systemctl disable firewalld

상태 확인

[root@calintzcs ~]# systemctl status firewalld

○ firewalld.service - firewalld - dynamic firewall daemon
     Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled; preset: enabled)
     Active: inactive (dead)
       Docs: man:firewalld(1)

Nov 08 15:11:27 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:11:27 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
Nov 08 15:20:05 calintzcs.com systemd[1]: Stopping firewalld - dynamic firewall daemon...
Nov 08 15:20:05 calintzcs.com systemd[1]: firewalld.service: Deactivated successfully.
Nov 08 15:20:05 calintzcs.com systemd[1]: Stopped firewalld - dynamic firewall daemon.
Nov 08 15:36:40 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:36:40 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
Nov 08 15:37:29 calintzcs.com systemd[1]: Stopping firewalld - dynamic firewall daemon...
Nov 08 15:37:29 calintzcs.com systemd[1]: firewalld.service: Deactivated successfully.
Nov 08 15:37:29 calintzcs.com systemd[1]: Stopped firewalld - dynamic firewall daemon.
  • Loaded 항목이 disabled로 되어 있다면 현재 부팅 시 자동 시작 비활성화 상태라는 의미다.

📌 firewalld 중지와 부팅 시 자동 시작 비활성화를 동시에 적용
systemctl disable firewalld --now

4. firewalld 시작

[root@calintzcs ~]# systemctl start firewalld

상태 확인

[root@calintzcs ~]# systemctl status firewalld

● firewalld.service - firewalld - dynamic firewall daemon
     Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled; preset: enabled)
     Active: active (running) since Wed 2023-11-08 15:39:52 KST; 8s ago
       Docs: man:firewalld(1)
   Main PID: 1580 (firewalld)
      Tasks: 2 (limit: 23009)
     Memory: 24.1M
        CPU: 264ms
     CGroup: /system.slice/firewalld.service
             └─1580 /usr/bin/python3 -s /usr/sbin/firewalld --nofork --nopid

Nov 08 15:39:52 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:39:52 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
  • Active 항목이 active (running)로 되어있다면 현재 동작 중이라는 의미다.

5. 부팅 시 firewalld 자동 시작 활성화

[root@calintzcs ~]# systemctl enable firewalld

상태 확인

[root@calintzcs ~]# systemctl status firewalld

● firewalld.service - firewalld - dynamic firewall daemon
     Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; preset: enabled)
     Active: active (running) since Wed 2023-11-08 15:39:52 KST; 1min 52s ago
       Docs: man:firewalld(1)
   Main PID: 1580 (firewalld)
      Tasks: 2 (limit: 23009)
     Memory: 26.1M
        CPU: 264ms
     CGroup: /system.slice/firewalld.service
             └─1580 /usr/bin/python3 -s /usr/sbin/firewalld --nofork --nopid

Nov 08 15:39:52 calintzcs.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Nov 08 15:39:52 calintzcs.com systemd[1]: Started firewalld - dynamic firewall daemon.
  • Loaded 항목이 enabled로 되어 있다면 현재 부팅 시 자동 시작 활성화 상태라는 의미다.

📌 firewalld 시작과 부팅 시 자동 시작 활성화를 동시에 적용
systemctl enable firewalld --now

profile
북극여우
이전 포스트

[설정] CentOS/RHEL/Rocky Linux/Oracle Linux에서 네트워크 설정(2) - IP 주소 설정(임시)

0개의 댓글

관련 채용 정보