'docker0' already bound to a zone解决

$ sudo firewall-cmd --permanent --zone=docker --change-interface=docker0  //permanent表示永久性写入
$ sudo systemctl restart firewalld