Changing Outgoing Policy to DROP in Datacenter Firewall

R

rackdie

Member
Jan 1, 2023
35
0
6
I am receiving alot of abuse reports for mail spamming so I want to allow incoming port 25 traffic to receive mails but want to drop outgoing for port 25 so no one can send mails.
I have configured the main datacenter firewall with drop incoming connections except the ports i need. I now want to block all outgoing traffic like mail spam so is it possible to change Outgoing Policy from ACCEPT to DROP in datacenter firewall instead of manually doing it in each VM. is there any negative side of changing from ACCEPT to DROP?
 
Are you running the mail server bare metal? Keep in mind that the datacenter firewall will only block traffic to/from your nodes, not to/from your VMs/LXCs.
 
Dunuin said:
Are you running the mail server bare metal? Keep in mind that the datacenter firewall will only block traffic to/from your nodes, not to/from your VMs/LXCs.
Click to expand...
So that means I have to do it manually for all VMs? am i right? its their any easier way to like copy paste firewall rules from one VM and paste it to other VM
 
rackdie said:
its their any easier way to like copy paste firewall rules from one VM and paste it to other VM
Click to expand...
Have a look a security groups. You could create security group for blocking mail trafic and then add that security group to all VMs using mails.
 
You must log in or register to reply here.
Top Bottom