Hi, I'm running 0.3.9.1 (Fedora 20) with the default "public" zone. I'm not running any special rules (riched rules). The only customization I did to the default zone is to remove "mdns" and two or three more services that come enabled out of the box. Now, when I use firewall-config to modify the public zone: - switch to permanent - change the default target to DROP - perform a firewalld reload ...I loose all connectivity. When I run "iptables -v -L -n" I see all counters showing 0 packets/bytes. I do notice the DROP lines in their respective *public" chains (as it should after the change). That is, if you take a look at the iptables rules they all make sense (they should work) but somehow, after changing the default target to DROP, it seems packet aren't reaching netfilter at all. Thanks, Jorge