Configuring Firewalld

Hi, I have a task about allowing some ports via firewalld, I have doubt to do the following ones.

Do I have to create a zone for example " internal " and allow incoming connection only for that zone? on the other hand the task says " zone should be public " but it does not make sense.

b. Allow incoming connections from LB host only on Apache port and block for all others.

@player001 would you please guide me :slight_smile:

Hello, @Nasri
Yes, you have to mention the zone public.
If you will do sudo firewall-cmd --list-all in the top of the line you will see available zone name.

@player001 but it does not make sense to me for the following task if I add the rule in public zone, I think I have to create another zone something like " Internal " and allow incoming connections from LB host only on Apache port and block for all others