Firewall Functionality
The Firewall drop-down menu in IPCop contains functionality to configure functions of the firewall itself. Since IPCop's design philosophy is to treat the Green zone as implicitly trusted and downgrade trust from there onwards, there is no egress filtering natively built into IPCop. Instead, your two main choices for configuration here are External Access, which lets you control which ports IPCop will allow in the inbound direction, and Port Forwarding. SeeChapter 9 for more information on setting up a more granular firewall policy, particularly for egress traffic (i.e. traffic traversing from Green to Red).
External Access
All traffic initiated in the Red zone is dropped by the IPCop firewall's rules by default. Almost all traffic coming in through the firewall in response to a request made by a client inside the network (such as a website being served in response to a client sending a get request for the website) is allowed, but in order to allow external hosts...