Tightening firewall


Noob to IPFire, so bear with me.

I am running IPFire on a small development network and I am wanting to close the Firewall a bit. My philosophy is to shut everything down and then open up ports as they are needed.

I created a rule from the Red to Green that drops all protocols. I also created a rule that does the same from Green to Red. I’m thinking that everything should be blocked. However, I can still ping google.com from a client machine on the green network. What am I missing?


see this thread

Thank you for pointing me in this direction!!!

Hi @texaskilt

Welcome to the IPFire community

You don’t have to do this. You can change the default mode for Green to Red from Allowed to Blocked.

See this wiki page in the section marked default firewall behaviour for Forward.