Created attachment 1245922 [details] Live ISO Fedora25 install - firewall rules Description of problem: Why are these ports opened by default? [liveuser@localhost-live ~]$ sudo firewall-cmd --list-all FedoraWorkstation (active) target: default icmp-block-inversion: no interfaces: ens3 sources: services: dhcpv6-client mdns samba-client ssh ports: 1025-65535/udp 1025-65535/tcp Version-Release number of selected component (if applicable): Fedora 25, live install session, fresh OS install How reproducible: Install Fedora 25 from ISO, run firewall-cmd --list-all Steps to Reproduce: 1. Boot Fedora 25 from iso image 2. run: firewall-cmd --list-all 3. Install to local drive 4. run: firewall-cmd --list-all Actual results: ports: 1025-65535/udp 1025-65535/tcp opened by default Expected results: I believe that this ports should not be opened by default. Additional info:
The workstation zone has been requested by the workstation team and any change for this zone needs to be requested there. Please have a look at: https://pagure.io/fesco/issue/1372 https://bugzilla.redhat.com/show_bug.cgi?id=1172353