I set up LXD on almalinux 9 with
firewalld enabled. I created an Ubuntu container with a
routed networking, and noticed that everything almost works, almost because inbound connections don’t work as long as firewalld is enabled on the host.
I disabled LXD’s firewall as recommended here: https://linuxcontainers.org/lxd/docs/master/howto/network_bridge_firewalld/#disable-lxd-s-firewall-rules and would like to handle everything with host’s firewalld. I’m not very familiar with firewalld, though. Is there a way to accept everything that has a specific target IP, even if this IP is not configured on the host’s interface? Ideal would be to allow everything going into containers, so they could filter it out themselves.