Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Virtualization 4
System Settings
Network Configuration and Firewalls
firewalld
Strengthen the Default Ruleset
Set Default firewalld Zone for Incoming Packets
Set Default firewalld Zone for Incoming Packets
An XCCDF Rule
Details
Profiles
Prose
Set Default firewalld Zone for Incoming Packets
Medium Severity
To set the default zone to
drop
for the built-in default zone which processes incoming IPv4 and IPv6 packets, modify the following line in
/etc/firewalld/firewalld.conf
to be:
DefaultZone=drop