firewalld manage internal connection only on redhat 7


we have infrastructure that contains hardware firewall that manage connections from outside. and the OS firewall is disabled, but for some reasons we need to open the OS firewall and it will be a headache to apply every rule on both hardware and OS firewalls.
So is there is anyway to make the firewall manage only connections between the servers (layer 2) and keep the out connections for the hardware firewall?
OS: Redhat 7