understanding LF_BLOCKINONLY behavior

Post Reply
aww+
Junior Member
Posts: 105
Joined: 27 Aug 2012, 20:53

understanding LF_BLOCKINONLY behavior

Post by aww+ »

In theory if LF_BLOCKINONLY is set to 1, shouldn't the server be able to make outgoing http requests to another ip listed in csf.deny?

Because it cannot.

If 1.2.3.4 is listed in csf.deny and LF_BLOCKINONLY is set to 1, a wget to 1.2.3.4 will fail (where 1.2.3.4 is just an example obviously)

Or does the iptables rules created only allow the connection to function in one direction, so the http connection is received but data never comes back?
Top
ForumAdmin
Moderator
Posts: 1524
Joined: 01 Oct 2008, 09:24

Re: understanding LF_BLOCKINONLY behavior

Post by ForumAdmin »

aww+ wrote:Or does the iptables rules created only allow the connection to function in one direction, so the http connection is received but data never comes back?
^That :)
Top
Post Reply

Return to “General Discussion (csf)”