One of the global rules is:
ALLOW IP Out From IP Any To IP Any Where Protocol Is Any
One of the good reasons to have a software firewall in addition to a hardware one (router) it the ability of the software firewall (well, a good one, unlike Windows Firewall) to block outgoing traffic in the event malware does somehow infect the machine.
It seems to me that the above mentioned rule just opens the barn door and allows ANYTHING out.
Am I right and if so should I delete this rule?
Or am I seeing it wrong.
Thanks, Brain Trust