Is it really necessary to block outgoing ports?

344740 pts.
Tags:
Firewalls
Home networks
Ports
I've been told that when I'm setting up my home network, I should make sure that all outgoing ports on my router should be blocked, although I should allow certain ones to open to support HTTP, HTTPS, etc. This even though I have a firewall in place. But is this really necessary if every computer on the network is trusted? 

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Discuss This Question: 3  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • TomLiotta

    There is no way for us to know if out-bound port blocking will be of any use at all for you unless we know every out-bound port that would be used by any programs that you might run. And even then it won't be guaranteed and might cause more trouble than it might save.

    Safe practices will likely be much better in preventing problems. Blocking out-bound ports is mostly helpful only if you already have malware of some type on your internal systems.

    Tom

    125,585 pointsBadges:
    report
  • carlosdl

    Blocking outbound ports may cause problems to the applications running on the machines, so, unless you know very well what you are doing, I would not recommend to do that.

    Using a software firewall with outgoing connection blocking capabilities (like ZoneAlarm) could be an easier way to block outbound ports without affecting the legitimate applications running on the system.

    69,045 pointsBadges:
    report
  • Kevin Beaver
    How do you know your computer is truly trusted? If it's connected to the Internet then you cannot claim it's truly clean without performing numerous hardening techniques and ongoing tests.

    Blocking outbound ports would be good but what, exactly, are you trying to do?
    16,875 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following