]> git.ipfire.org Git - ipfire-2.x.git/blobdiff - src/initscripts/system/firewall
projects / ipfire-2.x.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
suricata: Scan outgoing traffic, too
[ipfire-2.x.git] / src / initscripts / system / firewall
diff --git a/src/initscripts/system/firewall b/src/initscripts/system/firewall
index 9a79cb1aa98e8ae814ca1f1217ce1b0097adea98..a4fcee2ce10ccfa2f3d2251c051b2477e05a8fba 100644 (file)
--- a/src/initscripts/system/firewall
+++ b/src/initscripts/system/firewall
@@ -189,6 +189,7 @@ iptables_init() {
        iptables -N IPS
        iptables -A INPUT -j IPS
        iptables -A FORWARD -j IPS
+       iptables -A OUTPUT -j IPS
 
        # Block non-established IPsec networks
        iptables -N IPSECBLOCK
IPFire 2.x development tree