I am trying to bind tailscale to a "trusted" zone, however every time I change the zone for the tailscale0 interface I can no longer mange it via firewalld, if I leave it in the default public zone the rules I define there are good. I would really like to take tailscale out of the public zone because I want to keep my public zone pretty restricted. Any advise would be much appreciated Jose
On Sun, Nov 14, 2021 at 08:31:19PM -0000, Jose Galvez wrote:
I am trying to bind tailscale to a "trusted" zone, however every time I change the zone for the tailscale0 interface I can no longer mange it via firewalld,
I don't follow what this means. What are you expecting? CLI output helps.
if I leave it in the default public zone the rules I define there are good. I would really like to take tailscale out of the public zone because I want to keep my public zone pretty restricted. Any advise would be much appreciated
You already moved it to the "trusted" zone. The "trusted" zone allows all traffic.
Afternoon Eric,
Thank you for your reply. Apparently I had a fundamental misunderstanding of the trusted zone, and had not tested my assumptions adequately. It's working as expected now.
firewalld-users@lists.fedorahosted.org