How to stop and disable the firewall on CentOS 8

Firewall Dynamically manage the trust level of network connections and as a complete Firewall solution. Firewall service It is mainly used to configure and manage network connections by determining which packets are allowed and blocked. There are two types of FirewallD configurations, namely permanent and runtime. The persistent configuration is always retained during the system boot process, so it is always running, but the runtime configuration is lost when the service restarts.Let’s see how to stop and disable the firewall on CentOS 8.


Before you start learningIt is possible to stop and disable FirewallD on CentOS 8. You must have a non-root user account with sudo privileges on your system.

Check firewall status

First you need to check Firewall D At your system or not. Check the status of FirewallD by running the following firewall-cmd command.

$ sudo firewall-cmd --state

If the FirewallD service is running on your CentOS system, the above command will display the following message:


Note: If the firewall service is running on your system, you will get the above output.

How to stop the firewall

To stop FirewallD, temporarily run the following command in a terminal:

$ sudo systemctl stop firewalld

The above command will only affect the current runtime session. When the system starts, it will start again.

Disable FirewallD permanently

To be permanently disabled Firewall on CentOS 8 System, please follow these steps:1. First, stop the FirewallD service using the following command:

$ sudo systemctl stop firewalld

2. Disable the FirewallD service to start automatically at system startup:

$ sudo systemctl disable firewalld

The output of the above command is as follows:

Removed symlink /etc/systemd/system/
Removed symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service.

3. Block the FirewallD service, which will prevent the firewall from being started by other services:

$ sudo systemctl mask --now firewalld

As you can see from the output, the mask command only created the firewalld service to /dev/null:

Created symlink from /etc/systemd/system/firewalld.service to /dev/null.

Big! Now we are sure that the firewall is stopped and disabled.

in conclusion

It is always recommended that you always keep the firewall active to block unnecessary services and traffic. In this way, you will protect your system from possible threats and attacks. Always remember to disable the firewall before turning it off.