[CentOS] firewalld question

Fri Mar 25 16:31:17 UTC 2016
Matthew Miller <mattdm at mattdm.org>

On Fri, Mar 25, 2016 at 11:26:17AM +0000, Timothy Murphy wrote:
> >> I'n wondering if it is possible to have Centos-7 automatically change
> >> firewall zones, depending on the network we conect to.
> > The way to do this is changing the zone for the network in
> > NetworkManager.
> Are there two different ways of setting firewalld zones,
> in firewalld and in NetworkManager?
> Which is taken if they differ?

They can't differ — the configuration is stored in the ifcfg files, no
matter how you set it.


> I find the firewalld definition of "zones" rather confusing.
> I run shorewall on my home server, and that seems to me
> to have a much simpler definition of zones.

Think of "zone" as "set of presets".

-- 
Matthew Miller
<mattdm at fedoraproject.org>
Fedora Project Leader