What are the available firewalld zones?

Questions · 2025-10-30T13:25:35.564Z

The available firewalld zones are: 1. **drop** - All incoming connections are dropped, and only outgoing connections are allowed. 2. **block** - Incoming connections are rejected, and outgoing connections are allowed. 3. **public** - For use in public areas; only selected incoming connections are allowed. 4. **external** - Used for external networks; allows masquerading and selected incoming connections. 5. **dmz** - A demilitarized zone; allows only selected incoming connections to designated services. 6. **work** - For use in work environments; allows more services than the public zone. 7. **home** - For use in home environments; allows more services than the work zone. 8. **internal** - For internal networks; allows more services than the home zone. 9. **trusted** - All connections are accepted; no restrictions. You can view the available zones on your system by running the following command: ```bash firewall-cmd --get-zones ```

The available firewalld zones are:

drop - All incoming connections are dropped, and only outgoing connections are allowed.
block - Incoming connections are rejected, and outgoing connections are allowed.
public - For use in public areas; only selected incoming connections are allowed.
external - Used for external networks; allows masquerading and selected incoming connections.
dmz - A demilitarized zone; allows only selected incoming connections to designated services.
work - For use in work environments; allows more services than the public zone.
home - For use in home environments; allows more services than the work zone.
internal - For internal networks; allows more services than the home zone.
trusted - All connections are accepted; no restrictions.

You can view the available zones on your system by running the following command:

firewall-cmd --get-zones