i've had a number of people tell me that, while they put a good deal of thought into their INPUT filtering, they simply ACCEPT all outgoing traffic since, if their input filtering is working properly, there's no reason to stop outgoing packets. comments? is there a FAQ that deals with what one should filter on its way out? i'm restricting this to the simple case of firewalling a single host -- no routers, NAT, etc. rday
