Ok. I think you're talking about something else. Here it's ok to say you should have rules to restrict outgoing traffic from your gateway. But things should be very well considered before taking any action. One of the good things about restricting outgoing traffic is because you can stop some of the trojan horses to cause any problems for your network. For example a few weeks after I got a job from one of the remote WAN networks connected through a router to the net I got a call from saying that they couldn't do any browsing. When I got there I connected a laptop to the net and started sniffin' around. To my surprise all the computers were infected and because of the traffic directed to non-existing IP's the router was in DoS. Cool? No. :). If the router would have been setup to go only with 80, 110 and stuff, the browsing should have been ok as all the packets going to another port would have been rejected on the private interface (dropping them could cause problems to the source box). Anyway I disinfected the Microshafts and all got well. If I am wrong you could say otherwise but I don't think so. -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
