Do I have my firewall configured correctly (safely)?

[chris.zeman]

I had tried eBox last year, but ended up using another distro. I'm to a point where I require some of the features offered by eBox, so I installed it today. I want to be sure that I have my firewall configured correctly (safely) for basic internet access before I get into port forwarding.

Filtering rules from internal networks to eBox - Defaults

Filtering rules for internal networks

Code: [Select]

Decision     Source     Destination     Service     Description
ACCEPT     Any          Any                any          Internet
Filtering rules for traffic coming out from eBox

Code: [Select]

Decision     Destination     Service     Description
ACCEPT     Any                any          Internet

Thank you,
Chris

[javi]

With those rules you are allowing all traffic from your internal network to Internet, and traffic originated on the eBox machine.

Those rules are a bit relaxed, you could be more paranoid and allow only the traffic you nee

[chris.zeman]

Well, I'm not looking to put restrictions on outgoing traffic, so I guess everything is setup alright. Thanks!