firewalld

firewalld at its core is essentially a wrapper for iptables, but it does include some extra features and improved functionality.

• With iptables, when you reload a rule, connections can drop. This is a big problem on production servers. Firewalld uses in-place rule updates to prevent this.

firewall-cmd --get-zones

firewall-cmd --zone=dmz --list-all