I wrote:
Indeed. The best analogy would probably be a condom with a whopping
129024
holes in it. (That's the number of ports that are left open by only the 2
blanket firewalld rules quoted in my thread-starting post.) What kind of
protection do you expect from that?
Correction: The 2 offending rules actually open up "only" 129022 ports. That
doesn't change anything of the argument, but I'm correcting myself before
somebody starts nitpicking about that. ;-)
Kevin Kofler