my typical modis operandi no matter what operating system I set up; Mac, Windows, or *nix distro.
I will disable 50% of LS default rule set and use my version of the rule. Mac only of course.
Since ipv6 is not the universal standard as yet I disable all ipv6 rules and disable it in my network.
Allow all incoming connections from local network me
Allow all incoming connections from local network system
Allow all outgoing connections to local network me
Allow all outgoing connections to local network system
Block all incoming ports udp/tcp 0-1030 system
Block all outgoing ports udp/tcp 0-1030 me
Block all OS programs I do not use such as icloud, netbiosd, itunes, etc
Allow outgoing connections to DNS servers me via ipv4 ips
Allow outgoing connections to broadcast addresses
Quite often I will create separate rules for udp and tcp for the same program
All programs outside of your OS should never need to use ports below port 1030 unless they are a replacement for the OS program.... i.e. mail, ftp, browsers, etc
I then start with individual programs as I use them and block or allow as needed.
I only allow ports 0-1030 to be used by programs that absolutely needs them.... i.e. mail, browsers, dns, ssl, etc
My only prolonging issue is Battle.net which OBdev is already aware.
I use both Firefox and Safari with ad/noscript/bug blockers.
Very few websites are allowed total ad/nocript/bug access in my browsers and I enable/disable ad/noscipt/bug access on a session by session basis.
Granted a I do a lot of clicking but I'm much more safe than most users and go to a lot of sketchy sites.
All of the above is done in "Effective in all profiles" preset.
I also use vpn and torrent programs. Each has its own profile that is activated when in use with its own set of rules.
I will disable 50% of LS default rule set and use my version of the rule. Mac only of course.
Since ipv6 is not the universal standard as yet I disable all ipv6 rules and disable it in my network.
Allow all incoming connections from local network me
Allow all incoming connections from local network system
Allow all outgoing connections to local network me
Allow all outgoing connections to local network system
Block all incoming ports udp/tcp 0-1030 system
Block all outgoing ports udp/tcp 0-1030 me
Block all OS programs I do not use such as icloud, netbiosd, itunes, etc
Allow outgoing connections to DNS servers me via ipv4 ips
Allow outgoing connections to broadcast addresses
Quite often I will create separate rules for udp and tcp for the same program
All programs outside of your OS should never need to use ports below port 1030 unless they are a replacement for the OS program.... i.e. mail, ftp, browsers, etc
I then start with individual programs as I use them and block or allow as needed.
I only allow ports 0-1030 to be used by programs that absolutely needs them.... i.e. mail, browsers, dns, ssl, etc
My only prolonging issue is Battle.net which OBdev is already aware.
I use both Firefox and Safari with ad/noscript/bug blockers.
Very few websites are allowed total ad/nocript/bug access in my browsers and I enable/disable ad/noscipt/bug access on a session by session basis.
Granted a I do a lot of clicking but I'm much more safe than most users and go to a lot of sketchy sites.
All of the above is done in "Effective in all profiles" preset.
I also use vpn and torrent programs. Each has its own profile that is activated when in use with its own set of rules.