[wplug] IPTABLES help

Drew from Zhrodague drewzhrodague at zhrodague.net
Thu Aug 16 23:27:12 EDT 2012


> Ok, if there is outbound request (browsing a website for example) that
> will go through, but inbound attempt to browse my IP on port 80 would
> be blocked, ssh traffic would be allowed (on a non-standard port is
> best right?) both inbound and outbound, DNS requests would be allowed
> through. So outbound traffic good and allowed, but only certain
> inbound traffic allowed. I thought there is way to allow all outbound
> traffic and block all inbound traffic that did not first originate
> from my machine's IP?

	When you state your rules' default policy, allow traffic outbound via 
policy:

:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]


	And don't forget to allow communications to your localhost adapter:

-A INPUT -i lo -j ACCEPT


-- 

Drew from Zhrodague
lolcat divinator
drew at zhrodague.net


More information about the wplug mailing list