firewall-cmd --permanent --zone=public --add-forward-port=port=8001-8999:proto=tcp:toport=80 firewall-cmd --reload