suricata: Scan outgoing traffic, too
authorMichael Tremer <michael.tremer@ipfire.org>
Tue, 29 Jan 2019 12:03:37 +0000 (12:03 +0000)
committerStefan Schantl <stefan.schantl@ipfire.org>
Tue, 29 Jan 2019 13:08:51 +0000 (14:08 +0100)
Connections from the firewall and through the proxy must be filtered, too

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
src/initscripts/system/firewall

index 9a79cb1..a4fcee2 100644 (file)
@@ -189,6 +189,7 @@ iptables_init() {
        iptables -N IPS
        iptables -A INPUT -j IPS
        iptables -A FORWARD -j IPS
+       iptables -A OUTPUT -j IPS
 
        # Block non-established IPsec networks
        iptables -N IPSECBLOCK