1��、問題復(fù)現(xiàn)方法
1)在grub.cfg中禁用掉ipv6,設(shè)置方法如下:ipv6.disable=1 重啟系統(tǒng)���。
2)啟動firewalld服務(wù),查看服務(wù)狀態(tài)�����,如下圖
systemctl start firewalld.service
systemctl status firewalld.service
3)添加規(guī)則
firewall-cmd --add-port=82/tcp --permanent
4)重新加載規(guī)則�����,產(chǎn)生報錯(如圖 2)
firewall-cmd --reload
2�、問題分析結(jié)果
綜上分析,現(xiàn)有firewalld程序缺少對系統(tǒng)支持的防火墻規(guī)則的判斷�,從而導(dǎo)致防火墻報此錯誤日志,已在0.6.2-4.p03版本修復(fù)此問題��。
3���、補(bǔ)丁及下載地址
·銀河麒麟高級服務(wù)器操作系統(tǒng) V10 SP1
firewalld(aarch64)軟件包下載地址:
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/aarch64/Packages/firewalld-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/aarch64/Packages/firewalld-doc-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/aarch64/Packages/python3-firewall-0.6.2-4.p03.ky10.noarch.rpm
firewalld(mips64el)軟件包下載地址:
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/mips64el/Packages/firewalld-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/mips64el/Packages/firewalld-doc-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/mips64el/Packages/python3-firewall-0.6.2-4.p03.ky10.noarch.rpm
firewalld(x86_64)軟件包下載地址:
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/x86_64/Packages/firewalld-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/x86_64/Packages/firewalld-doc-0.6.2-4.p03.ky10.noarch.rpm
https://update.cs2c.com.cn/NS/V10/V10SP1.1/os/adv/lic/updates/x86_64/Packages/python3-firewall-0.6.2-4.p03.ky10.noarch.rpm
4�����、修復(fù)和更新方法
1)升級firewalld軟件包至0.6.2-4.p03版本
rpm -Uvh firewalld-0.6.2-4.p03.ky10.noarch.rpm python3-firewall-0.6.2-4.p03.ky10.noarch.rpm
2)重新加載systemd配置和firewalld服務(wù)
systemctl daemon-reload
systemctl restart firewalld.service
