编辑防火墙配置文件: vi /etc/sysconfig/iptables 防火墙启动: service iptables restart 如果提示不存在配置文件,那就手动添加一个. 主要配置如下: # Firewall configuration written by system-config-firewall# Manual customization of this file is not recommended.*filter:INPUT ACCEPT [0:0]:FORWARD AC
here are multiple "hackish" ways to do it: scan kernel logs, as mentioned by Jiri (but you have to do it right after starting the container, otherwise it gets messy); check the interface counters (sent/received packets/bytes) in the container
一.iptables防火墙 1.基本操作 # 查看防火墙状态 service iptables status # 停止防火墙 service iptables stop # 启动防火墙 service iptables start # 重启防火墙 service iptables restart # 永久关闭防火墙 chkconfig iptables off # 永久关闭后重启 chkconfig iptables on 2.开启80端口 vim /etc/sysconfig/iptables
#头两行是注释说明# Firewall configuration written by system-config-securitylevel# Manual customization of this file is not recommended.#使用filter表*filter#下面四条内容定义了内建的INPUT.FORWAARD.ACCEPT链,还创建了一个被称为RH-Firewall-1-INPUT 的新链:INPUT ACCEPT [0:0]:FORWARD ACCEPT [0: