<pre class="bash" style="font-family: monospace;"><span style="color: rgb(102, 102, 102); font-style: italic;"></span>Hi!<br><br>Could some net filter expert give me some advise how to use iptables with TOR?<br><br>I'm trying the following to drop all non TOR connections:<br>
<br>iptables <span style="color: rgb(102, 0, 51);">-F</span> INPUT<br>iptables <span style="color: rgb(102, 0, 51);">-F</span> OUTPUT<br> <br><span style="color: rgb(102, 102, 102); font-style: italic;"></span><br>iptables <span style="color: rgb(102, 0, 51);">-P</span> INPUT DROP<br>
iptables <span style="color: rgb(102, 0, 51);">-P</span> OUTPUT DROP<br><br>iptables <span style="color: rgb(102, 0, 51);">-A</span> OUTPUT <span style="color: rgb(102, 0, 51);">-o</span> lo <span style="color: rgb(102, 0, 51);">-j</span> ACCEPT<br>
iptables <span style="color: rgb(102, 0, 51);">-A</span> INPUT <span style="color: rgb(102, 0, 51);">-i</span> lo <span style="color: rgb(102, 0, 51);">-j</span> ACCEPT<br> <br><span style="color: rgb(102, 102, 102); font-style: italic;"></span><br>
iptables <span style="color: rgb(102, 0, 51);">-A</span> OUTPUT <span style="color: rgb(102, 0, 51);">-m</span> owner <span style="color: rgb(102, 0, 51);">--uid-owner</span> debian-tor <span style="color: rgb(102, 0, 51);">-j</span> ACCEPT<br>
<br><span style="color: rgb(102, 102, 102); font-style: italic;"></span><br>iptables <span style="color: rgb(102, 0, 51);">-A</span> INPUT <span style="color: rgb(102, 0, 51);">-m</span> state <span style="color: rgb(102, 0, 51);">--state</span> ESTABLISHED,RELATED <span style="color: rgb(102, 0, 51);">-j</span> ACCEPT<br>
<br><br>Is there more to think about?<br><br>Thanks a lot!<br></pre><br clear="all"><br>-- <br>Michael Gomboc<br><br>pgp-id: 0x5D41FDF8<br>