firewall-cmd --permanent --zone=public --add-rich-rule='
rule family="ipv4"
source address="192.168.0.0/16"
port protocol="tcp" port="8080" accept'
Source: https://major.io/2014/11/24/trust-ip-address-firewallds-rich-rules/
firewall-cmd --permanent --zone=trusted --change-interface=docker0
firewall-cmd --zone=trusted --add-rich-rule='rule family="ipv4" source address="172.17.0.0/16" accept'
firewall-cmd --reload