[wplug] IPTABLES help
Drew from Zhrodague
drewzhrodague at zhrodague.net
Thu Aug 16 23:27:12 EDT 2012
> Ok, if there is outbound request (browsing a website for example) that
> will go through, but inbound attempt to browse my IP on port 80 would
> be blocked, ssh traffic would be allowed (on a non-standard port is
> best right?) both inbound and outbound, DNS requests would be allowed
> through. So outbound traffic good and allowed, but only certain
> inbound traffic allowed. I thought there is way to allow all outbound
> traffic and block all inbound traffic that did not first originate
> from my machine's IP?
When you state your rules' default policy, allow traffic outbound via
policy:
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
And don't forget to allow communications to your localhost adapter:
-A INPUT -i lo -j ACCEPT
--
Drew from Zhrodague
lolcat divinator
drew at zhrodague.net
More information about the wplug
mailing list