The Firewall Outgoing feature lets you block or allow certain kinds of traffic from leaving your network.

If you did not select this module to be included during the installation process, you must first install the module.

You can find this feature in the menu system at the following location:

<navigation>Network|Firewall|Outgoing</navigation>

The Firewall Outgoing feature is useful for blocking/allowing instant messaging, chat, certain type of downloads, and more. You may also want to block traffic using the Protocol Filter, so make sure you review that feature as well.

You have two ways to block/allow traffic:

• by destination port/service
• by destination IP address/domain

There are two modes to the Firewall Outgoing system:

• Allow all outbound traffic and block specific types of traffic (default)
• Block all outbound traffic and allow specific types of traffic

Destination Ports prevents/allows a connection on a particular port/service. For instance, adding port 80 (web) disables/enables web-surfing for your entire local network.

Destination Domains allows you to block/allow certain networks and sites. For instance, if your outgoing mode is set to allow all outgoing traffic, you could block the entire island nation of Tuvalu (why would you do that?) by adding the 202.2.96.0/19 network to the block list. The “Destination Domain” can be a Domain, IP address or Subnet (in CIDR or IP/netmask form).

Blocking popular content such as Facebook or YouTube or appl like BitTorrent with the Egress Firewall is probably not the easiest or most effective way of blocking and there may be other apps or techniques more suitable.

DNS Poisoning
Content Filter
Gateway Management Business
Gateway Management Community
Application Filter
Protocol Filter
Content Filter Ins and Outs

search?q=clearos%2C%20clearos%20content%2C%20Egress%20Firewall%2C%20app-egress-firewall%2C%20clearos7%2C%20userguide%2C%20categorynetwork%2C%20subcategoryfirewall%2C%20maintainer_dloper&amp;btnI=lucky