I am new to firewalld and doing my best to understand the firewall management.
I've created ipsets for bogon4 and bogon6, loaded them via firewall-cmd and redirected them to zone=drop since I want to drop all connections to the entities in the ipsets. The active zones in firewall right now are "public" & "drop", should I redirect them to zone=public too or keep them where they are? If I am suppose to redirect the ipsets to zone public, how do I remove them from zone drop?
Code: Select all
Name: bogons4 Type: hash:net Revision: 6 Header: family inet hashsize 4096 maxelem 200000 Size in memory: 29048 References: 7 Number of entries: 475 Name: bogons6 Type: hash:net Revision: 6 Header: family inet6 hashsize 65536 maxelem 200000 Size in memory: 525656 References: 7 Number of entries: 111083