If you try to remove one of the predefined zones from Firewalld, e.g. public, you encounter the following error:

Error: BUILTIN_ZONE: 'public' is built-in zone

I don’t like that Firewalld is bloated with all of these built in zones that I will never use. I want to get rid of them, but, from what I’ve been able to find, it appears non-trivial to do so.

EDIT (2024-01-27T01:55Z):

I came across this GitHub issue. So it appears that this is a known “issue”, and it could potentially be changed in the future, albeit probably far in the future. It is a very strange initial design choice, though, in my opinion.

  • maryjayjay@lemmy.world
    9·
    9 months ago

    Because the people that wrote it decided to make it that way. If you don’t like it, just remove firewalld and manage your iptables/nftables directly

    • Kalcifer@sh.itjust.worksOP
      11·
      9 months ago

      Because the people that wrote it decided to make it that way.

      Sure, but it still feels like a strange design decision.

      If you don’t like it, just remove firewalld and manage your iptables/nftables directly

      This is essentially what I ended up doing.