centos7 not config iptables

install.sh

@@ -874,7 +874,8 @@ install_v2ray() {
 	if [[ $cmd == "apt-get" ]]; then
 		$cmd install -y lrzsz git zip unzip curl wget qrencode libcap2-bin
 	else
-		$cmd install -y lrzsz git zip unzip curl wget qrencode libcap iptables-services
+		# $cmd install -y lrzsz git zip unzip curl wget qrencode libcap iptables-services
+		$cmd install -y lrzsz git zip unzip curl wget qrencode libcap
 	fi
 	ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime
 	[ -d /etc/v2ray ] && rm -rf /etc/v2ray
@@ -1151,6 +1152,7 @@ install_v2ray() {
 }
 
 open_port() {
+	if [[ $cmd == "apt-get" ]]; then
 		if [[ $1 != "multiport" ]]; then
 
 			iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport $1 -j ACCEPT
@@ -1176,15 +1178,15 @@ open_port() {
 			# firewall-cmd --reload
 
 		fi
-	if [[ $cmd == "apt-get" ]]; then
 		iptables-save >/etc/iptables.rules.v4
 		ip6tables-save >/etc/iptables.rules.v6
-	else
-		service iptables save >/dev/null 2>&1
-		service ip6tables save >/dev/null 2>&1
+		# else
+		# 	service iptables save >/dev/null 2>&1
+		# 	service ip6tables save >/dev/null 2>&1
 	fi
 }
 del_port() {
+	if [[ $cmd == "apt-get" ]]; then
 		if [[ $1 != "multiport" ]]; then
 			# if [[ $cmd == "apt-get" ]]; then
 			iptables -D INPUT -m state --state NEW -m tcp -p tcp --dport $1 -j ACCEPT
@@ -1217,13 +1219,11 @@ del_port() {
 			# 	firewall-cmd --permanent --zone=public --remove-port=$ports/udp
 			# fi
 		fi
-
-	if [[ $cmd == "apt-get" ]]; then
 		iptables-save >/etc/iptables.rules.v4
 		ip6tables-save >/etc/iptables.rules.v6
-	else
-		service iptables save >/dev/null 2>&1
-		service ip6tables save >/dev/null 2>&1
+		# else
+		# 	service iptables save >/dev/null 2>&1
+		# 	service ip6tables save >/dev/null 2>&1
 	fi
 
 }
@@ -1373,14 +1373,14 @@ config() {
 /sbin/ip6tables-restore < /etc/iptables.rules.v6
 	EOF
 		chmod +x /etc/network/if-pre-up.d/iptables
-	else
-		[ $(pgrep "firewall") ] && systemctl stop firewalld
-		systemctl mask firewalld
-		systemctl disable firewalld
-		systemctl enable iptables
-		systemctl enable ip6tables
-		systemctl start iptables
-		systemctl start ip6tables
+		# else
+		# 	[ $(pgrep "firewall") ] && systemctl stop firewalld
+		# 	systemctl mask firewalld
+		# 	systemctl disable firewalld
+		# 	systemctl enable iptables
+		# 	systemctl enable ip6tables
+		# 	systemctl start iptables
+		# 	systemctl start ip6tables
 	fi
 
 	[ $shadowsocks ] && open_port $ssport

v2ray.sh

@@ -10,7 +10,7 @@ none='\e[0m'
 # Root
 [[ $(id -u) != 0 ]] && echo -e " 哎呀……请使用 ${red}root ${none}用户运行 ${yellow}~(^_^) ${none}" && exit 1
 
-_version="v2.47"
+_version="v2.48"
 
 cmd="apt-get"
 
@@ -2801,6 +2801,7 @@ uninstall_lotserver() {
 }
 
 open_port() {
+	if [[ $cmd == "apt-get" ]]; then
 		if [[ $1 != "multiport" ]]; then
 			# if [[ $cmd == "apt-get" ]]; then
 			iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport $1 -j ACCEPT
@@ -2832,16 +2833,16 @@ open_port() {
 			# 	firewall-cmd --reload
 			# fi
 		fi
-	if [[ $cmd == "apt-get" ]]; then
 		iptables-save >/etc/iptables.rules.v4
 		ip6tables-save >/etc/iptables.rules.v6
-	else
-		service iptables save >/dev/null 2>&1
-		service ip6tables save >/dev/null 2>&1
+		# else
+		# 	service iptables save >/dev/null 2>&1
+		# 	service ip6tables save >/dev/null 2>&1
 	fi
 
 }
 del_port() {
+	if [[ $cmd == "apt-get" ]]; then
 		if [[ $1 != "multiport" ]]; then
 			# if [[ $cmd == "apt-get" ]]; then
 			iptables -D INPUT -m state --state NEW -m tcp -p tcp --dport $1 -j ACCEPT
@@ -2865,12 +2866,11 @@ del_port() {
 			# 	firewall-cmd --permanent --zone=public --remove-port=$ports/udp
 			# fi
 		fi
-	if [[ $cmd == "apt-get" ]]; then
 		iptables-save >/etc/iptables.rules.v4
 		ip6tables-save >/etc/iptables.rules.v6
-	else
-		service iptables save >/dev/null 2>&1
-		service ip6tables save >/dev/null 2>&1
+		# else
+		# 	service iptables save >/dev/null 2>&1
+		# 	service ip6tables save >/dev/null 2>&1
 	fi
 }
 update() {