On 25/10/14 1:42 AM, Always Learning wrote: > Being a fan of IPtables and dreading the eventual transition to Centos > 7, I wondered if in C7's firewalld an interface can be assigned to a > single zone or to multiple zones such as 'private' and 'trusted'. You can still use iptables with Centos7, if you want... (AFAIK both firewalld & iptables use the same kernel functions) To stop and disable firewalld systemctl stop firewalld systemctl mask firewalld TO install iptables.. yum install iptables-services Enable and start iptables systemctl enable iptables systemctl start iptables for IPV6 systemctl enable ip6tables > > For example interface em1 having both trusted and public zones assigned > to it. If multiple zones per interface are permitted presumably one can > segregate traffic by IP range ? > >