a_ all traffic outgoing from untrusted namevhost.com must be rejected (not dropped by firewall)
b_ all traffic outgoing from example.com must be rejected except for https and smtp traffic
c_ traffic aimed at the proxy server must be rejected unless it originated from 192.168.54.0/24 or 192.168.64.0/24
d_ https traffic must be accepted from everywhere but log to the system log file
for a_ and b_
I could not understand what outgoing means here. How can I put "outgoing" traffic into firewall-cmd syntax?
for c_
On same server I installed and configure squid proxy where I allow incoming port 8000/tcp requests on the loopback interface.
for d_
I had added already https into public zone
Code: Select all
firewall-cmd --permanent --zone=public --add-service=https