[iptables] drop or accept policy for outgoing connections.

To: "debian-firewall@lists.debian.org" <debian-firewall@lists.debian.org>
Subject: [iptables] drop or accept policy for outgoing connections.
From: Daniel Curtis <sidetripping@gmail.com>
Date: Sat, 22 Jun 2013 11:50:24 +0200
Message-id: <[🔎] CAASvXNud1kkJA8B+QYf_huNRwvRnpVLFwLkfmafw-ruUGO5VcQ@mail.gmail.com>

I have a question about iptables and rules for OUTPUT

chain. If I have a typical desktop without any services
like SSH, Samba etc. it is better to use something like?;

iptables -P DROP
iptables -A OUTPUT -o eth0 -j ACCEPT

or it does not matter and it could be a simple one rule;

iptables -P OUTPUT ACCEPT

I'm asking because I'm curious. And frankly I've always been.

Best regards.

Reply to:

Follow-Ups:
- Re: [iptables] drop or accept policy for outgoing connections.
  - From: David Dejaeghere <david.dejaeghere@gmail.com>
- Re: [iptables] drop or accept policy for outgoing connections.
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>

Next by Date: Re: [iptables] drop or accept policy for outgoing connections.
Next by thread: Re: [iptables] drop or accept policy for outgoing connections.
Index(es):
- Date
- Thread