Block all incoming connections, except certain subnet

[vinmansbrew]

I am running rhel 8.10, using firewalld.
I want to add a rule that blocks all incoming traffic, except a certain network. For example, I only want to all connections from 122.122.0.0/24, while blocking all others. I don't know if specifying services matters, but the server needs to allow 443(https) internally.

I've tried adding rules to different zones such as exclude. I can't seem to find the combo that blocks everything but 122.122.0.0/24
Even looking into rich rules. I haven't found a direct rule, either. I thought I would, since I've used a direct rule to block all traffic leaving the server, except to certain subnets.

I assume this would be possible?

 

[CaffeineAddict]

I know nothing about firewalld but this is usually done by blocking all by default globally (not a rule) and then adding allow rules.

According to article below, what you probably need is to assign your interface to "block" zone and then add allow rules to it.

A beginner's guide to firewalld in Linux

The firewall is essential for controlling the flow of network traffic in and out of the Linux server. In this article, you'll display, add, and remove firewalld rules.

www.redhat.com