Red Hat FirewallD question

When ever I add the following rule to my configuration "rule family="ipv4" source address="0.0.0.0/0" reject" all connections to my server are rejected even the ones I have already opened/allowed. The rule order doesn't matter and the zone doesn't matter. Here is an example.

public (active)
target: default
icmp-block-inversion: no
interfaces: eth0
sources:
services: dhcpv6-client
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
rule family="ipv4" source address="0.0.0.0/0" service name="ssh" accept
rule family="ipv4" source address="0.0.0.0/0" reject

I know in this rule, the final reject is not needed, but just wanted to show an example. As soon as I add that last reject rule to any configuration, all connections are rejected/blocked to the server. I even reordered them. So rule order and zone doesn't seem to make a difference.

In the above example, shouldn't it see the accept for SSH and then stop processing and never get to the reject after that.

Thanks