Any idea how to crate rule for block all outgoing traffic on a server except for auto updates and apt repositories as well as established connections from the outside and internal network traffic (such as ossec server/agent) and block all inbound traffic except for the ports really necessary for your setup (ssh)
Any idea how to crate rule for block all outgoing traffic on a server except for auto updates and apt repositories as well as established connections from the outside and internal network traffic (such as ossec server/agent) and block all inbound traffic except for the ports really necessary for your setup (ssh)
LikeLike
Yes You can write rules in iptables or firewalld . you can write either host based rules or port based .
LikeLike