Hello,
first thank you very much for your work on this great project.
It didnt quite become clear to me how i can implement a whitelist approach for outgoing connections. So specifically list what allowed destinations are. I assume i used the wrong search terms so sorry if its a trivial question.
The page on location block clarifies, this should happen over the firewall rules
Note: The Location Block feature only applies to inbound connections. You cannot block outgoing connections with it, please do so by creating firewall rules.
The use case is i would like to drop any and all connections that dont go out over my VPN tunnel (or come in).
No idea how i missed this the first time through. Really sorry and thanks.
When switching the “Forward Firewall” to “Blocked”, the traffic will no longer be transfered between the zones. Please note, the traffic from internal zones to your IPFire’s RED zone is also affected, but not the traffic of the IPFire system itself. You will then have to create firewall rules to re-allow desired packets between your internal network zones and the Internet.
