Opening ports on a Linux server is essential when you want to allow external devices to communicate with specific services, like web servers, SSH, or database servers. This tutorial will guide you through the process of opening a port in Linux safely and effectively.
Step 1: Check if the Port is Already Open
Before opening a port, check whether it’s already open or in use.
Replace PORT_NUMBER with the actual port you want to check, for example, 8080.
If nothing returns, the port is closed or unused.
Step 2: Identify Your Firewall System
Most modern Linux distros use either firewalld, iptables, or ufw (Ubuntu) to manage firewall rules.
Check which firewall is running:
or
Step 3: Open the Port
If You Use firewalld (CentOS, RHEL, Fedora)
-
Open the port temporarily (until next reboot or firewall restart):
-
To make the change permanent:
Example: Open port 8080 TCP
If You Use ufw (Ubuntu)
-
Allow the port:
-
Reload ufw (usually not necessary, but to be sure):
Example: Open port 8080 TCP
If You Use iptables (Older distros or manual firewall rules)
-
Add a rule to allow traffic on the port:
-
Save the iptables rules to persist after reboot.
For Debian/Ubuntu:
For CentOS/RHEL:
Example: Open port 8080 TCP
Step 4: Verify the Port is Open
You can check again with:
Or test externally by using:
Bonus: Open a Port in SELinux (If Enabled)
If SELinux is enforcing, you may also need to allow the port explicitly:
If semanage is not installed:
Summary
-
Identify your firewall management tool (
firewalld,ufw,iptables). -
Add rules to open your desired port.
-
Reload or save your firewall settings.
-
Verify the port is open.
-
Consider SELinux settings if applicable.
