webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 03:33:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

suricata: Scan outgoing traffic, too

Browse Source 
Connections from the firewall and through the proxy must be filtered, too

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
This commit is contained in:
Michael Tremer
2019-01-29 12:03:37 +00:00
committed by Stefan Schantl
parent 8059239661
commit 17c2c09bcc
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/initscripts/system/firewall
View File

@@ -189,6 +189,7 @@ iptables_init() {
iptables -N IPS iptables -N IPS
iptables -A INPUT -j IPS iptables -A INPUT -j IPS
iptables -A FORWARD -j IPS iptables -A FORWARD -j IPS
iptables -A OUTPUT -j IPS
# Block non-established IPsec networks # Block non-established IPsec networks
iptables -N IPSECBLOCK iptables -N IPSECBLOCK