firewalld not listing any active zones?

Question

When running

[root@host ~]# firewall-cmd --get-active-zones
[root@host ~]#
[root@host ~]# firewall-cmd --get-default-zone
public

I am not getting any active zones. How can I activate a zone?

score 10 · Accepted Answer · answered Jan 13 '16 at 22:58

10

You activate a zone by binding a network interface or source IP address range(s) to it. Any firewall rules in the zone then apply to that network interface or IP address range(s).

answered Jan 13 '16 at 22:58

Michael Hampton

244,070
43
506
972

1

I also had to restart the service. – giorgio79 Jan 13 '16 at 23:02
1

You can do this via `firewall-cmd --permanent --zone=public --change-interface=eth0` (for example). – Jan 18 '17 at 12:59
3

I think `--get-active-zones` should print the default zone as well. Maybe as `public (implicit) internal home` or whatever. – bviktor Mar 21 '17 at 18:17
1

You need a `firewall-cmd --reload` after change interface command @negacao said to commit changes. – alizeyn May 07 '20 at 10:22

score 2 · Answer 2 · answered Jan 13 '18 at 15:53

2

On a similar case, I took a peek with strace and realized, that FirewallD had somehow lost D-Bus access completely.

The easiest fix was to reboot the Linux. That helped and FirewallD saw active zones again.

answered Jan 13 '18 at 15:53

Jari Turkia

296
2
5

yep, that was the case for me. – Salem F Feb 03 '23 at 07:02

score 0 · Answer 3 · answered Nov 05 '20 at 19:32

0

I had the same question, except I had definitely had an interface in a zone. For me I had to restart the firewalld service.

answered Nov 05 '20 at 19:32

loztagain

1
1

firewalld not listing any active zones?

3 Answers3