firewall opensuse

Hello,

Do you know if you plan to implement in the opensuse firewall that can block outbound connections?

It’s a shame having to resort to external firewalls for this reason.

What do you want to block? What kind of connections?

You can also install a stateful proxy firewall on the same box, then point your outbound applications to localhost.

HTH,
TS

I need block a simple outbound connection to a TCP port. Why install a proxy to do this? others firewalls if allowed to do as fwbuilder or ufw.

Do not understand why opensuse firewall is so simple.

On 2012-03-27 13:16, jony127 wrote:
>
> Hello,
>
> Do you know if you plan to implement in the opensuse firewall that can
> block outbound connections?

Who is “you” in that sentence? Us? :slight_smile:
Please remember that we are users like you. If you want to request a new
feature, you have to do it in FATE.

However, you can add your custom rules to the firewall, if you know how.
I don’t.


Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)

On Tue, 27 Mar 2012 15:56:03 +0000, jony127 wrote:

> I need block a simple outbound connection to a TCP port. Why install a
> proxy to do this? others firewalls if allowed to do as fwbuilder or ufw.
>
> Do not understand why opensuse firewall is so simple.

It’s not a ‘simple’ firewall, it’s set up as an ingress firewall. It is
designed to block inbound connections. Fairly typical on Linux platforms
regardless of distribution.

ufw is a different frontend to iptables (which is the underlying firewall
on openSUSE), so if you can do this with ufw, then just grab the rules
that are put in place and use iptables to set up egress filtering.

Jim


Jim Henderson
openSUSE Forums Administrator
Forum Use Terms & Conditions at http://tinyurl.com/openSUSE-T-C

ufw is a different frontend to iptables (which is the underlying firewall
on openSUSE), so if you can do this with ufw, then just grab the rules
that are put in place and use iptables to set up egress filtering.

I wanted to do it graphically for convenience.

Where can request new features?

In openFATE. But do not expect too much response, as this is a bit the black hole.
P.S. you have to register.