[CentOS] Firewalld direct.xml

Tue Mar 24 18:18:09 UTC 2020
Jerry Geis <jerry.geis at gmail.com>

HI All -  I created a /etc/firewalld/direct.xml file and put in it :

<?xml version="1.0" encoding="utf-8"?>
<direct>
        <chain ipv="ipv4" table="raw" chain="blacklist"/>
        <rule ipv="ipv4" table="raw" chain="PREROUTING" priority="0">-s
192.168.1.8  -j blacklist</rule>
</direct>

I rebooted, so then from the 192.168.1.8 machine I tried to ping the
machine. I responds.
I was expecting it not to respond?

What do I not have right with the direct.xml file ?

Thanks

Jerry