1. 允许某个ip访问某端口。
    firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="192.168.1.2/24" port protocol="tcp" port="8080" accept"
  2. 删除某个ip访问某端口规则
    firewall-cmd --permanent --zone=public --remove-rich-rule="rule family="ipv4" source address="203.74.37.230/24" port protocol="tcp" port="8080" accept"
  3. 没做任何IP限制开启某端口
    firewall-cmd --zone=public --add-port=81/tcp --permanent
  4. 允许某IP可以访问某服务
    irewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" \ source address="192.168.0.4/24" service name="http" accept"