Tightening firewall

texaskilt · 4 April 2022 19:51

Howdy!

Noob to IPFire, so bear with me.

I am running IPFire on a small development network and I am wanting to close the Firewall a bit. My philosophy is to shut everything down and then open up ports as they are needed.

I created a rule from the Red to Green that drops all protocols. I also created a rule that does the same from Green to Red. I’m thinking that everything should be blocked. However, I can still ping google.com from a client machine on the green network. What am I missing?

Thanks…

anon42188109 · 4 April 2022 20:26

see this thread

texaskilt · 4 April 2022 20:32

Thank you for pointing me in this direction!!!

bonnietwin · 4 April 2022 20:45

Hi @texaskilt

Welcome to the IPFire community

You don’t have to do this. You can change the default mode for Green to Red from Allowed to Blocked.

See this wiki page in the section marked default firewall behaviour for Forward.

https://wiki.ipfire.org/configuration/firewall/default-policy#default-firewall-behaviour