On Mon, Jan 28, 2019 at 11:07 AM Patrick O'Callaghan pocallaghan@gmail.com wrote:
On Mon, 2019-01-28 at 08:20 +0800, Ed Greshko wrote:
[egreshko@meimei .ssh]$ sudo firewall-cmd --info-zone=public public (active) target: default icmp-block-inversion: no interfaces: enp2s0 vnet0 wlp4s0 sources: services: dhcpv6-client dns kde-connect mdns ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules:
Nothing to remark on there I think. I have some extra ports and services enabled but that's to be expected.
I was noting the difference between yours...
interfaces: enp3s0 p3p1 virbr0 virbr0-nic
and mine
interfaces: enp2s0 vnet0 wlp4s0
Surely you must have virbr0? Not sure where virbr0-nic comes from but I assume it's created by libvirt.
virbr0's MAC is copied from the first NIC that's attached to it. To ensure that virbr0 has (1) a MAC (if no NIC's attached, it won't have a MAC) and (2) always the same MAC, virbr0-nic is created and attached to virbr0.