From 88b757a9dc5ff45bd5ff21e5155673d48f9646d6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=B4me=20Schneider?= <jschneider@entrouvert.com>
Date: Sat, 9 Nov 2013 10:46:09 +0100
Subject: [PATCH] temp commit

---
 firewall.conf | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/firewall.conf b/firewall.conf
index 92284d7..29a300f 100644
--- a/firewall.conf
+++ b/firewall.conf
@@ -13,10 +13,21 @@ LAN_NETWORK=''                 # LAN network (ex: 192.168.1.0/24)
 LAN=0                          # Allow traffic between the WAN and LAN
 LAN_INT=''                     # LAN interface
 
+## Allow OUTPUT for everything
+ALLOW_OUTOUT_EVERYWHERE=0
+
 ## Allow all traffic for interface(s)
 # example ALLOW_INTS='br0 xenbr42'
 ALLOW_INTS=''
 
+## Output allow
+# destination [source] protocole {porta|portx:porty},[portx:porty,porta,portb,...]" .
+# by default we allow http, https, ssh and DNS connections
+OUPUT_DESTINATIONS=(
+"0.0.0.0/0 tcp http,https,ssh,domain"
+"0.0.0.0/0 udp domain"
+)
+
 ## Open ports
 # "source [destination] protocole {porta|portx:porty},[portx:porty,porta,portb,...]" ...
 # The default destination is the IP !