#!/bin/bash
# 2024-12

systemctl restart firewalld
systemctl enable firewalld

firewall-cmd --zone=public  --permanent --add-port=8080/tcp --add-port=80/tcp --add-port=443/tcp --add-port=21-22/tcp --add-port=6971-7020/tcp --add-port=8180/tcp --add-port=8022-8025/tcp  --add-port=7900-7910/tcp --add-port=55500-55550/tcp --add-port=7970-7978/tcp --add-port=8798-8799/tcp --add-port=8971-8977/tcp 

sshdp="$(netstat -ltnp | grep '/sshd' | grep -v ':22' | awk -F: '{print $2}'|awk '{print $1}')"

[[ -n $sshdp ]] &&  firewall-cmd --zone=public  --permanent --add-port=${sshdp}/tcp

firewall-cmd --reload