Close

CentOS7安装后基本设置

查看系统版本信息
#uname -a
#cat /etc/redhat-release
升级所有包,改变软件设置和系统设置,系统版本内核都升级
#yum -y update
升级所有包,不改变软件设置和系统设置,系统版本升级,内核不改变
#yum -y upgrade
修改主机名:
CentOS7中主机名的配置文件发生了改变,不再是/etc/sysconfig/network,更改/etc/hostname才会生效

#vim /etc/hostname

关闭selinux

SELINUX=disabled

CentOS 7.0启用iptables防火墙

1、关闭firewall:
systemctl disable firewalld.service #禁止firewall开机启动
systemctl stop firewalld.service #停止firewall
2、安装iptables防火墙
yum install iptables-services #安装
接下来的事情就和用iptables是一样的了,若要开启某端口,则(80端口为例,红色为添加的规则):
-A INPUT -m state –state NEW -m tcp -p tcp –dport 80 -j ACCEPT #允许80端口通过防火墙

############################## 添加后防火墙规则如下所示 ##############################
# Firewall configuration written by system-config-firewall
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state –state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m state –state NEW -m tcp -p tcp –dport 22 -j ACCEPT
-A INPUT -m state –state NEW -m tcp -p tcp –dport 80 -j ACCEPT
-A INPUT -j REJECT –reject-with icmp-host-prohibited
-A FORWARD -j REJECT –reject-with icmp-host-prohibited
COMMIT
centos7设置时区 修改时间
timedatectl
timedatectl set-timezone Asia/Shanghai
timedatectl set-time “2016-08-02 18:05:10”
date -s 16:51:00

打赏

About 老周

Leave a Reply

Your email address will not be published. Required fields are marked *

此站点使用Akismet来减少垃圾评论。了解我们如何处理您的评论数据