Leapp Preupgrade check fails with error - "Inhibitor: Firewalld Configuration AllowZoneDrifting Is Unsupported" .

Solution Verified - Updated 13 Jun 2024

Environment

Red Hat Enterprise Linux 8.4.
Red Hat Enterprise Linux 8.6.
Red Hat Enterprise Linux 8.9(Beta).
Leapp Upgrade Tool
Firewalld

Issue

Leapp Upgrade from RHEL 8 to 9 fails with below error :

Risk Factor: high (inhibitor)
Title: Firewalld Configuration AllowZoneDrifting Is Unsupported
Summary: Firewalld has enabled configuration option "AllowZoneDrifiting" which has been removed in RHEL-9. New behavior is as if "AllowZoneDrifiting" was set to "no".

Resolution

Check the "AllowZoneDrifting" option in /etc/firewalld/firewalld.conf file

# cat /etc/firewalld/firewalld.conf | grep -i AllowZoneDrifting
# AllowZoneDrifting
AllowZoneDrifting=yes

Run the below command to disable the AllowZoneDrifting option.

# sed -i "s/^AllowZoneDrifting=.*/AllowZoneDrifting=no/" /etc/firewalld/firewalld.conf

Proceed with leapp pre-upgrade and upgrade accordingly.

# leapp preupgrade
# leapp preupgrade --target=<version>

SBR

Anaconda

Product(s)

Red Hat Enterprise Linux for x86_64

Components

Category

Upgrade

Tags

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.