Firewalld报：WARNING: AllowZoneDrifting is enabled

linux版本：CentOS Linux release 8.3.2011

启用防火墙，

提示警告：WARNING: AllowZoneDrifting is enabled. This is considered an insecure configuration option. It will be removed in a future release.

解决方法：

修改防火墙配置文件：

vim /etc/firewalld/firewalld.conf

搜索：AllowZoneDrifiting  ， 把对应的值 yes  改为 no 

重启防护墙即可

systemctl restart firewalld 

[root@cent8_yzil ~]# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
   Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
   Active: active (running) since Tue 2021-05-11 20:45:00 EDT; 2 days ago
     Docs: man:firewalld(1)
 Main PID: 1089 (firewalld)
    Tasks: 2 (limit: 11251)
   Memory: 12.2M
   CGroup: /system.slice/firewalld.service
           └─1089 /usr/libexec/platform-python -s /usr/sbin/firewalld --nofork --nopid

May 11 20:44:58 cent8_yzil.example.com systemd[1]: Starting firewalld - dynamic firewall daemon...
May 11 20:45:00 cent8_yzil.example.com systemd[1]: Started firewalld - dynamic firewall daemon.
May 11 20:45:01 cent8_yzil.example.com firewalld[1089]: WARNING: AllowZoneDrifting is enabled. This is considered an insecure c>

[root@cent8_yzil ~]# vi /etc/firewalld/firewalld.conf 
AllowZoneDrifting=no

[root@cent8_yzil ~]# systemctl restart firewalld
[root@cent8_yzil ~]# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
   Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
   Active: active (running) since Fri 2021-05-14 03:35:45 EDT; 5s ago
     Docs: man:firewalld(1)
 Main PID: 10954 (firewalld)
    Tasks: 2 (limit: 11251)
   Memory: 33.6M
   CGroup: /system.slice/firewalld.service
           └─10954 /usr/libexec/platform-python -s /usr/sbin/firewalld --nofork --nopid

May 14 03:35:44 cent8_yzil.example.com systemd[1]: Starting firewalld - dynamic firewall daemon...
May 14 03:35:45 cent8_yzil.example.com systemd[1]: Started firewalld - dynamic firewall daemon.
[root@cent8_yzil ~]#