Secara default, RHEL 7 menggunakan layanan FirewallD untuk menyediakan keamanan jaringan. FirewallD harus dihentikan dan dinonaktifkan saat menggunakan layanan iptables:
# systemctl stop firewalld.service # systemctl disable firewalld.service
# systemctl enable iptables.service # systemctl start iptables.service
Layanan iptables sekarang disediakan oleh paket terpisah yang disebut iptables-services:
# yum info iptables-services Name : iptables-services Arch : x86_64 Version : 1.4.21 Release : 13.el7 Size : 23 k Repo : installed From repo : anaconda Summary : iptables and ip6tables services for iptables URL : http://www.netfilter.org/ License : GPLv2 Description : iptables services for IPv4 and IPv6 : : This package provides the services iptables and ip6tables that have been split : out of the base package since they are not active by default anymore.
Paket iptables-services mungkin perlu diinstal pertama kali:
# systemctl -a|grep iptables ● iptables.service not-found inactive dead iptables.service
Hentikan dan nonaktifkan layanan firewalld terlebih dahulu.
# systemctl stop firewalld.service # systemctl disable firewalld.service Removed symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service. Removed symlink /etc/systemd/system/basic.target.wants/firewalld.service.
Jika Anda mencoba mengaktifkan layanan iptables, itu akan gagal.
# systemctl enable iptables.service Failed to execute operation: No such file or directory
Instal iptables-services paket.
# yum install iptables-services -y
Aktifkan layanan iptables :
# systemctl enable iptables.service Created symlink from /etc/systemd/system/basic.target.wants/iptables.service to /usr/lib/systemd/system/iptables.service.
Mulai layanan iptables :
# systemctl start iptables.service #
CentOS / RHEL 7 :Bagaimana cara membuka port di firewall dengan firewall-cmd?
CentOS / RHEL 7 :Tidak dapat memulai/mengaktifkan iptables