| What | Removed | Added |
|---|---|---|
| CC | admin@seisho.us |
firewalld noob here.
In my case I upgraded from 15.2 to 15.5 as after 2 year the libvirt and
firewalld combo started to misbehave badly.
In my case the error manifest as
firewalld[6760]: ERROR: Calling pre func <bound method
Firewall.full_check_config of <class 'firewall.core.fw.Firewall'>(True, True,
True, 'INIT', False, 'public', {'nf_nat_ftp': 2}, [], True, True, True, False,
'off')>(()) failed: INVALID_ZONE: 'libvirt-routed' not among existing zones
And looks like is no longer possible in my case to have nat port forwarding.
Rules like
firewall-cmd --permanent
--add-forward-port=port=2302:proto=udp:toaddr=192.168.100.223:toport=2302
simply vanish when querying iptables-save (which is not showing many many other
things btw), same for iptables -L -v -n -t nat.