linux防火墙脚本，一键解决防火墙规则带来的痛苦。

脚本如下：#1.echo"1------------------------------------------------------------------------------------"serviceiptablesstart#2.echo"2------------------------------------------------------------------------------------"#3.echo"3------------------------------------------------------------------------------------"iptables-tfilter-Fiptables-tfilter-Ziptables-tfilter-X#4.echo"4------------------------------------------------------------------------------------"iptables-tfilter-PINPUTDROPiptables-tfilter-POUTPUTACCEPTiptables-tfilter-PFORWARDACCEPT#5.echo"5------------------------------------------------------------------------------------"iptables-AINPUT-ilo-jACCEPTiptables-AOUTPUT-olo-jACCEPT#6.echo"6------------------------------------------------------------------------------------"iptables-AINPUT-mstate--stateESTABLISHED,RELATED-jACCEPT#7.echo"7------------------------------------------------------------------------------------"#icmp-pingiptables-AINPUT-picmp-jACCEPT#sshdiptables-AINPUT-ptcp--dport22-jACCEPT#zabbixiptables-AINPUT-ptcp--dport10050-jACCEPT#mysqliptables-AINPUT-ptcp--dport3306-jACCEPT#redisiptables-AINPUT-ptcp--dport6379-jACCEPT#8.echo"8------------------------------------------------------------------------------------"serviceiptablessaveserviceiptablesrestart#9.echo"9------------------------------------------------------------------------------------"cat/etc/sysconfig/iptables新建文件firewall_rule.sh然后放入linux文件目录下使用命令赋权限，linux下执行shell脚本是需要权限的：chmod+x firewall_rule.sh然后更改上述脚本，比如需要ssh，我们就要开放22端口规则：iptables-AINPUT-ptcp--dport22-jACCEPT

要开放tomcat规则如下，默认8080端口：

iptables-AINPUT-ptcp--dport8080-jACCEPT

把你需要的开放的端口补充上述脚本，然后执行

./firewall_rule.sh

大功完成！