R4.2 uses nftables, and has selinux enabled by default. That part of the documentation probably needs updating.
In the meantime, @solene has written a good community guide:
Qubes R4.2 nftables firewall guide
1 Like