How to create block outgoing traffic rules?

19beans · February 27, 2023, 12:45pm

Hi,

I’m trying to create rules to block outbound traffic. What should i use nftables or iptables?

Thanks for any help

vgaetera · February 27, 2023, 1:00pm

Fedora relies on firewalld/nftables by default, so a kill switch looks like this:

sudo firewall-cmd --permanent --new-policy=host-block
sudo firewall-cmd --permanent --policy=host-block --set-target=REJECT
sudo firewall-cmd --permanent --policy=host-block --add-ingress-zone=HOST
sudo firewall-cmd --permanent --policy=host-block --add-egress-zone=ANY
sudo firewall-cmd --reload

However keep in mind the related caveats:
How can I configure a killswitch for OpenVPN using firewalld? - #8 by vgaetera

19beans · March 3, 2023, 11:49am

Ok thanks

Topic		Replies	Views
How can I configure a killswitch for OpenVPN using firewalld? Ask Fedora	6	3055	January 23, 2023
How to create a Lockdown zone and block all traffic (incoming and outgoing) on firewalld? Ask Fedora f38 , silverblue	2	1298	October 28, 2023
Iptables rule to allow DNS traffic on client Ask Fedora f33 , networking	16	5326	May 5, 2021
Nftables firewall accept command Ask Fedora	2	297	April 20, 2022
Nftables rules for a proxy Ask Fedora nftables , proxy	2	81	February 20, 2025

How to create block outgoing traffic rules?

Related topics