To remove an interface from a zone, I issued the following commands:<br />
<br />
firewall-cmd --zone=trusted --remove-interface=lo --permanent<br />
firewall-cmd --reload<br />
firewall-cmd --zone=trusted --list-all<br />
<br />
However, the interface was still associated with the zone.<br />
<br />
I then checked the xml configuration files in /etc/firewalld/zones - trusted.xml was edited and no longer contained the interface lo. I then deleted the trusted.xml file and its backup from /etc/firewalld/zones and ran firewall-cmd --complete-reload, but this did not clear the lo interface from the trusted zone either.<br />
<br />
Finally, I rebooted the system and this worked. The lo interface was cleared from the trusted zone.
↧
