Skip to content

Commit

Permalink
Explain that firewalld does DENY by default
Browse files Browse the repository at this point in the history
  • Loading branch information
Benjamin Blasco committed Feb 6, 2022
1 parent 4ab36bf commit 9393462
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion blog/_posts/2022-02-04-policy-objects-routing-example.md
View file
Expand Up @@ -31,7 +31,7 @@ After much research and troubleshooting I learned that firewalld was rejecting i

## How do we fix it?

This tells me that the FedoraServer zone is rejecting my request. Why? It turns out that the Firewalld+nftables filter_FORWARD chain prevents non-NATed routing. However, forwarding is possible using the "Policy Objects" feature that was implemented in firewalld around 2020.
This tells me that the FedoraServer zone is rejecting my request. Why? It turns out that the Firewalld+nftables filter_FORWARD chain prevents non-NATed routing, and firewalld will deny by default. However, forwarding is possible using the "Policy Objects" feature that was implemented in firewalld around 2020.

You can read more here:

Expand Down

0 comments on commit 9393462

Please sign in to comment.