On Wed, Jun 17, 2020 at 03:34:32AM +0800, Ed Greshko wrote:
On 2020-06-17 03:23, Eric Garver wrote:
> If you've recently updated firewalld check for AllowZoneDrifting in
/etc/firewalld/firewalld.conf.
>
> Based on the bits of info you gave above you may have been unknowingly
making use of undesired behavior.
> See this blog post for further information:
>
> Â Â Â Â https://firewalld.org/2020/01/allowzonedrifting
>
> Hope that helps.
No difference when set to "yes". :-(
Can you show you're firewalld configuration?
# firewall-cmd --list-all-zones
I wonder if you have port forwarding (e.g. 22 -> foo) on the firewalld
node. That would hijack the SSH connection attempt.