Add rules for blocking UDP / TCP Ports exern out.

2022-03-18 18:19:43 +01:00
parent 52022cd6c7
commit 19bf795a99
5 changed files with 186 additions and 0 deletions
--- a/55
+++ b/55
@ -396,6 +396,61 @@ else
 fi


+# ---
+# - Block UDP Ports out
+# ---
+
+echononl "\tBlock UDP Ports extern out.."  
+
+if [[ ${#block_udp_extern_out_port_arr[@]} -gt 0 ]] ; then
+
+   for _port in ${block_udp_extern_out_port_arr[@]} ; do
+
+      for _dev in ${ext_if_arr[@]} ; do
+
+         $ip6t -A OUTPUT -o $_dev -p udp --dport $_port  -j DROP
+
+         if $kernel_forward_between_interfaces ; then
+            $ip6t -A FORWARD -o $_dev -p udp --dport $_port  -j DROP
+         fi
+
+      done
+
+   done
+   echo_done
+else
+   echo_skipped
+fi
+
+
+# ---
+# - Block TCP Ports out
+# ---
+
+echononl "\tBlock TCP Ports extern out.."  
+
+if [[ ${#block_tcp_extern_out_port_arr[@]} -gt 0 ]] ; then
+
+   for _port in ${block_tcp_extern_out_port_arr[@]} ; do
+
+      for _dev in ${ext_if_arr[@]} ; do
+
+         $ip6t -A OUTPUT -o $_dev -p tcp --dport $_port  -j DROP
+
+         if $kernel_forward_between_interfaces ; then
+            $ip6t -A FORWARD -o $_dev -p tcp --dport $_port  -j DROP
+         fi
+
+      done
+
+   done
+   echo_done
+else
+   echo_skipped
+fi
+
+
+
 # ---
 # - Allow Forwarding certain private Addresses
 # ---