From 1e91036d56e3dd30fc4b9e1fbf44611f267a74cf Mon Sep 17 00:00:00 2001
From: darkexplosiveqwx <101737077+darkexplosiveqwx@users.noreply.github.com>
Date: Sun, 13 Apr 2025 15:55:52 +0200
Subject: [PATCH] Cleanup firewalled after removal of api port

Signed-off-by: darkexplosiveqwx <101737077+darkexplosiveqwx@users.noreply.github.com>
---
 docs/main/prerequisites.md | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/docs/main/prerequisites.md b/docs/main/prerequisites.md
index 22c4181..c532d14 100644
--- a/docs/main/prerequisites.md
+++ b/docs/main/prerequisites.md
@@ -117,12 +117,10 @@ ip6tables -I INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 
 #### FirewallD
 
-Using the `--permanent` argument will ensure the firewall rules persist reboots. If only IPv4 blocking is used for the Pi-hole installation, the `dhcpv6` service can be removed from the commands below. Create a new zone for the local interface (`lo`) for the pihole-FTL ports to ensure the API is only accessible locally. Finally `--reload` to have the new firewall configuration take effect immediately.
+Using the `--permanent` argument will ensure the firewall rules persist reboots. If only IPv4 blocking is used for the Pi-hole installation, the `dhcpv6` service can be removed from the commands below. Finally `--reload` to have the new firewall configuration take effect immediately.
 
 ```bash
 firewall-cmd --permanent --add-service=http --add-service=https --add-service=dns --add-service=dhcp --add-service=dhcpv6 --add-service=ntp
-firewall-cmd --permanent --new-zone=ftl
-firewall-cmd --permanent --zone=ftl --add-interface=lo
 firewall-cmd --reload
 ```