Hi all, I've been trying to add a subnet to my firewalld drop zone because queries from this subnet have been filling up my named logs and I've had enough!! Based on research these are some assumptions I've made - Adding a subnet to a zone makes it an active zone Zones with subnets take precedence over those with interfaces attached connection refused resolving '243.32.237.94.bb.barracudacentral.org/A/IN': 64.235.145.15#53 << In this example 64.235.145.15 is the source IP (am I right?) This is what I've done to try and achieve what I want - firewall-cmd --permanent --zone=drop --add-source=64.235.144.0/20 (I've researched this, subnet is correct) firewall-cmd --reload I'm still getting queries to my DNS servers from this subnet though, what have I missed? Thanks for looking _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx/message/KSBPXKD7QQE4I2ZWDLLM3W4N5TM2RA7Z/
