Fedora 22: How can this work?

1. Fedora 22
2. How can this work with no interfaces assigned to zone FedoraServer and external?
3. -----------------------------------------------------
4. ]# ifconfig
5. enp0s25: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
6. inet 192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255
7. inet6 fe80::221:86ff:fe9a:f968 prefixlen 64 scopeid 0x20<link>
8. ether 00:21:86:9a:f9:68 txqueuelen 1000 (Ethernet)
9. RX packets 21872 bytes 2428330 (2.3 MiB)
10. RX errors 0 dropped 0 overruns 0 frame 0
11. TX packets 17118 bytes 8998716 (8.5 MiB)
12. TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
13. device interrupt 20 memory 0xfe200000-fe220000
14.  
15. ens5: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
16. inet [public IP] netmask 255.255.255.0 broadcast 192.168.1.255
17. inet6 fe80::213:3bff:fe99:d942 prefixlen 64 scopeid 0x20<link>
18. ether 00:13:3b:99:d9:42 txqueuelen 1000 (Ethernet)
19. RX packets 32687 bytes 9577225 (9.1 MiB)
20. RX errors 0 dropped 0 overruns 0 frame 0
21. TX packets 4700 bytes 775641 (757.4 KiB)
22. TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
23.  
24. lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
25. inet 127.0.0.1 netmask 255.0.0.0
26. inet6 ::1 prefixlen 128 scopeid 0x10<host>
27. loop txqueuelen 1 (Local Loopback)
28. RX packets 16 bytes 1408 (1.3 KiB)
29. RX errors 0 dropped 0 overruns 0 frame 0
30. TX packets 16 bytes 1408 (1.3 KiB)
31. TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
32. -----------------------------------------------------
33. ]# firewall-cmd --get-zones
34. FedoraServer FedoraWorkstation block dmz drop external home internal public trusted work
35. ]# firewall-cmd --get-zone-of-interface=ens5
36. no zone
37. ]# firewall-cmd --get-zone-of-interface=enp0s25
38. no zone
39.  
40. -----------------------------------------------------
41. ]# firewall-cmd --list-all-zones
42. FedoraServer (default)
43. interfaces:
44. sources:
45. services: cockpit dhcp dhcpv6-client dns ssh
46. ports:
47. masquerade: yes
48. forward-ports:
49. icmp-blocks:
50. rich rules:
51.  
52. FedoraWorkstation
53. interfaces:
54. sources:
55. services: dhcpv6-client samba-client ssh
56. ports: 1025-65535/udp 1025-65535/tcp
57. masquerade: no
58. forward-ports:
59. icmp-blocks:
60. rich rules:
61.  
62. block
63. interfaces:
64. sources:
65. services:
66. ports:
67. masquerade: no
68. forward-ports:
69. icmp-blocks:
70. rich rules:
71.  
72. dmz
73. interfaces:
74. sources:
75. services: ssh
76. ports:
77. masquerade: no
78. forward-ports:
79. icmp-blocks:
80. rich rules:
81.  
82. drop
83. interfaces:
84. sources:
85. services:
86. ports:
87. masquerade: no
88. forward-ports:
89. icmp-blocks:
90. rich rules:
91.  
92. external
93. interfaces:
94. sources:
95. services: ssh
96. ports:
97. masquerade: yes
98. forward-ports:
99. icmp-blocks:
100. rich rules:
101.  
102. home
103. interfaces:
104. sources:
105. services: dhcpv6-client mdns samba-client ssh
106. ports:
107. masquerade: no
108. forward-ports:
109. icmp-blocks:
110. rich rules:
111.  
112. internal
113. interfaces:
114. sources:
115. services: dhcpv6-client mdns samba-client ssh
116. ports:
117. masquerade: no
118. forward-ports:
119. icmp-blocks:
120. rich rules:
121.  
122. public
123. interfaces:
124. sources:
125. services: dhcpv6-client mdns ssh
126. ports:
127. masquerade: no
128. forward-ports:
129. icmp-blocks:
130. rich rules:
131.  
132. trusted
133. interfaces:
134. sources:
135. services:
136. ports:
137. masquerade: no
138. forward-ports:
139. icmp-blocks:
140. rich rules:
141.  
142. work
143. interfaces:
144. sources:
145. services: dhcpv6-client mdns ssh
146. ports:
147. masquerade: no
148. forward-ports:
149. icmp-blocks:
150. rich rules: